An unusual two-track targeting chain — SS7 roaming and ad-tech data reportedly followed U.S. personnel
TL;DR
Iran-linked actors reportedly combined SS7 roaming access and ad-tech location data to track U.S. personnel.
An unusual tracking method was reportedly used in a war zone: The Iranian government combined SS7 roaming vulnerabilities with ad-tech location data to locate U.S. personnel in the Middle East. TechCrunch reported the Financial Times account on July 14; the original report was based on Mobile Surveillance Monitor research and unnamed government officials.
SS7 is the protocol set that lets 2G and 3G carriers exchange call, text, and roaming information across borders. An attacker need not touch the target phone: abuse of roaming servers and query privileges between carriers can reveal an approximate device location. Intelligence agencies and surveillance vendors have used similar flaws for years.
The second path starts with ordinary advertising networks. Phone apps transmit location signals for personalized ads, and data brokers and ad-tech platforms aggregate them into patterns that can identify bases, hotels, and repeated travel routes. The chain does not depend on an AI model or a single handset CVE; commercial and telecom datasets converge on the same target.
The Financial Times and TechCrunch said the tracking covered U.S. bases and hotels in Iraq, Bahrain, and other countries, and that the intelligence allowed Iran to carry out strikes. Public evidence still does not provide a complete, independently verifiable attribution: no named operational unit, infrastructure set, or forensic chain has been released, and the government sources were anonymous.
via TechCrunch / Financial Times
SS7 is the protocol set that lets 2G and 3G carriers exchange call, text, and roaming information across borders. An attacker need not touch the target phone: abuse of roaming servers and query privileges between carriers can reveal an approximate device location. Intelligence agencies and surveillance vendors have used similar flaws for years.
The second path starts with ordinary advertising networks. Phone apps transmit location signals for personalized ads, and data brokers and ad-tech platforms aggregate them into patterns that can identify bases, hotels, and repeated travel routes. The chain does not depend on an AI model or a single handset CVE; commercial and telecom datasets converge on the same target.
The Financial Times and TechCrunch said the tracking covered U.S. bases and hotels in Iraq, Bahrain, and other countries, and that the intelligence allowed Iran to carry out strikes. Public evidence still does not provide a complete, independently verifiable attribution: no named operational unit, infrastructure set, or forensic chain has been released, and the government sources were anonymous.
via TechCrunch / Financial Times
