Law enforcement agencies worldwide, including Hungarian domestic intelligence and various U.S. police departments, have reportedly utilized a geolocation surveillance system known as Webloc. This tool, originally developed by Cobwebs Technologies and now offered by Penlink after their merger in July 2023, harnesses advertising data to track mobile devices globally, as highlighted in a recent Citizen Lab report.
Webloc’s Global Reach and Functionality
Webloc, marketed as an extension to the Tangles social media intelligence system, provides continuous access to data from up to 500 million mobile devices worldwide. The data includes device identifiers, location points, and user profiles sourced from mobile apps and digital advertisements. This capability allows for extensive monitoring, enabling users to track movements and personal details of individuals over a three-year span.
U.S. entities such as Immigration and Customs Enforcement (ICE), the U.S. military, and numerous police departments across cities including Los Angeles and Dallas are among Webloc’s noted users. The tool’s ability to infer locations from IP addresses and gather personal information like home and workplace addresses is of particular interest to these agencies.
Controversies and Ethical Concerns
Despite its widespread use, Webloc has raised significant privacy concerns. Reports from 404 Media, Forbes, and the Texas Observer indicate that authorities can employ Webloc to track devices without requiring a warrant. Additionally, a procurement notice mentioned its capability to automate monitoring of mobile advertising IDs and analyze geolocated IP addresses, igniting debates on its legality and ethical use.
In December 2021, Meta deplatformed Cobwebs Technologies for engaging in covert reconnaissance and social engineering on various targets, including activists and politicians. These activities revealed Cobwebs’ extensive operations in countries like Bangladesh, Mexico, and Poland, further complicating the narrative around its successor, Penlink.
Response and Future Implications
Penlink, responding to these revelations, stated that the report relies on inaccurate information and misinterpretations of its operations since acquiring Cobwebs Technologies. The company asserts its compliance with U.S. state privacy laws, distancing itself from past practices.
The Citizen Lab emphasizes the need for scrutiny over ad-based surveillance technologies, which are increasingly employed by military and intelligence agencies globally. As the debate on privacy and surveillance intensifies, understanding and regulation of such tools remain crucial in safeguarding individual rights.
