Apple Explores India for iPhone Chip Assembly as Manufacturing Push Accelerates 
Trello Outage Disrupts Users as Access Issues Hit Atlassian’s Work Management Platform 
SoftBank Shares Slide as Oracle’s AI Spending Plans Fuel Market Jitters 
Oracle Stock Surges After Hours on TikTok Deal Optimism and OpenAI Fundraising Buzz 
SpaceX Begins IPO Preparations as Wall Street Banks Line Up for Advisory Roles 
Jared Isaacman Confirmed as NASA Administrator, Becomes 15th Leader of U.S. Space Agency 
Nvidia Weighs Expanding H200 AI Chip Production as China Demand Surges 
U.S. Lawmakers Urge Pentagon to Blacklist More Chinese Tech Firms Over Military Ties 
Trump Administration Reviews Nvidia H200 Chip Sales to China, Marking Major Shift in U.S. AI Export Policy 
noyb Files GDPR Complaints Against TikTok, Grindr, and AppsFlyer Over Alleged Illegal Data Tracking. 
Dina Powell McCormick Resigns From Meta Board After Eight Months, May Take Advisory Role 
Mizuho Raises Broadcom Price Target to $450 on Surging AI Chip Demand 
Evercore Reaffirms Alphabet’s Search Dominance as AI Competition Intensifies 
iRobot Files for Chapter 11 Bankruptcy Amid Rising Competition and Tariff Pressures 
Moore Threads Stock Slides After Risk Warning Despite 600% Surge Since IPO 
SK Hynix Considers U.S. ADR Listing to Boost Shareholder Value Amid Rising AI Chip Demand 
Intel’s Testing of China-Linked Chipmaking Tools Raises U.S. National Security Concerns 
The California-based company LocationSmart has been in several headlines lately as reports claim they were involved in a massive selling of sensitive data that potentially exposed real-time location data of mobile users in the United States.
Now, LocationSmart is subjected to aonther unflattering report as KrebsOnSecurity revealed that the company's widely available tool had a bug that possibly leaked sensitive and private location data.
Anyone who knows how to exploit the said bug reportedly had the ability to track a mobile device in real-time even without entering any log-in details or without having to go through a verification process.
Meanwhile, KrebsOnSecurity has informed LocationSmart of the glitch and the latter has since shut down their bugged online service on Thursday, May 17. It is believed that the bug posed a threat to anyone in the United States using the services of major carriers including AT&T, Sprint, T-Mobile, and Verizon.
Security researcher Robert Xiao also helped explain how easy it was to manipulate the bug through LocationSmart’s free demo tool, which the company has been offering as a trial product to its potential customers.
A user can track his own device by entering in the demo tool their name, mobile number, and email address. LocationSmart’s tool, then, forwards a message to the device that contains a request to send data to a cellular tower close to the device. Once permission is granted, the tool collects “approximate longitude and latitude” then maps out the device’s location through Google Street View services.
However, Xiao further explained that the bug in LocationSmart’s demo tool might have allowed someone to bypass the necessary verification process to avoid unauthorized collection of data.
Meanwhile, to test whether the demo tool’s glitch was indeed working, KrebsOnSecurity and Xiao tested it with “five different trusted sources” who gave permission to participate in the experiment. The report further said that Xiao’s methods worked “within a few seconds” and have accurately located all five sources.
