Nostr Web Client

I have a secondary user profile in #Graphene running Google Play Services.

It has an always-on VPN.

When I went to check my logged in devices in that Google account, it shows the location as my real location - which never was the VPN server I connected to. The clock is not even set to this city.

Why is this information leaking?

Seems like a pretty nasty bug.

nostr:nprofile1qqstnr0dfn4w5grepk7t8sc5qp5jqzwnf3lejf7zs6p44xdhfqd9cgspzpmhxue69uhkummnw3ezumt0d5hszrnhwden5te0dehhxtnvdakz7qgawaehxw309ahx7um5wghxy6t5vdhkjmn9wgh8xmmrd9skctcnv0md0 would you know

DeseretSaint 1y ago

Are they getting the geolocation from your Sim maybe? Your Sim can be used to trace you via cell towers and isn't affected by a VPN.

Reply to this note

Please Login to reply.

Discussion

franzap 1y ago

How can it be called unprivileged if it has access to SIM geolocation, however that works

DeseretSaint 1y ago

No clue, simply a theory. I could be wrong.