Gavin Sheridan Profile picture
Jan 28, 2018 42 tweets 17 min read Twitter logo Read on Twitter
Gotta love Strava heatmaps. Here's a heatmap of people running in Niamey, Niger. About 160km south of where a US solider was killed in Tongo Tongo last year 1/
Here's 3x Predator drones at the same location. One is taxiing for takeoff. 2/
Here's 3 more military planes at the same location. One looks like a JSTARS.
here:
Someone with a fitness tracker magically appeared in Western Somali desert, walked north/south south/north, then disappeared. I wonder were helicopters involved? 🤔
Back to Niger. This time west of Arlit in northern Niger.... hmmm.
Helicopter pads, 2x helos. Looks like a FOB (Forward Operating Base) - and they are scout helos, usually used by special forces in this context I'd reckon. Also interesting facility to the south.
Here's what looks like another facility to the south in Agadez.
Here's someone cycling *in the middle of nowhere* in eastern Niger. Barely a dirt road out this remote.
This is the most up to date satellite imagery of that location (2016). Looks like something has been built since then.
Someone's been running up and down the airstrip beside the main runway at the airport in Benghazi, Libya.
Here's someone running around old al Adem airbase in eastern Libya.
A Statoil facility in eastern Algeria
Madama airbase in northern Niger. Hardened hangers.
Timbuktu airport. Some civilian aircraft.
Eastern Yemen. Not sure how they got to this remote location...
This is the French military base in N'Djamena, Chad. Looks like some possible US hardware on the tarmac there, not surprisingly.
Mamul airport, Oman.
Here's the runs people go on at Diego Garcia - the US airbase.
Western Libya airstrip
Think this is a French forces airbase at Marche, in Mali. 4x helos.
To the north is the Amachach helo base outside Tessalit. 1x helo on the tarmac. Looks like assorted French military vehicles. Tessalit was recaptured by French forces in 2013 after Taureg rebels took it in 2012. Acc to Google the pads were added after 2011 (last pic is older)
You can see the growth of the base since 2003.
Gemena, DRC
Northern Syria, just north of Manbij. You can see evidence of tracked vehicles. Someone went for a run around a temporary encampment I reckon.
Northwest of Al Hasakah - at the dam. At a guess I'd say US forces were at "live stone resort" on the way to fight ISIS to the south. And someone decided to go for a run along the dam.
I'd guess these are private security contractors at facilities near the Iran-Iraq border. 'Blue Hackle Security' is even marked on the Google Map.
an addendum to this: back in early 2013 we built a tool to do simultaneous queries on multiple social platforms against v v large geobounded areas. Essentially I could draw a circle around *a country* and wait for *any* geotagged data to appear.
This often led to the same results you see with Strava. In low population countries, or countries with low smartphone penetration, it was often easy to detect Westerners (usually soldiers) in remote areas.
this usually led to being able to identify bases and other types of things based solely on social data. Iraq, Afghanistan = always easy to find US troops (Instagram being a common sharing tool). Same true of IDF troops in staging areas before invasion of Gaza in 2014.
and the same true in 2014 with Russian troops in Ukraine. All too easy. Of course the other thing you might be nosey about known military facilities. Social geotagging can give you staff/visitor lists if you persist long enough.
the difference between this technique and Strava was you could usually quickly deduce first name/last name if you wanted, and infer other social profiles eg LinkedIn -> FB -> FB friends -> work colleagues. Not only that but it was possible to automate.
in short: everything was hiding in plain sight 5 years ago. You just have to know how to use APIs and conceptualise systems built on top of them. Tools like @Dataminr and @banjo were built on the same principles as ours.
And what's even crazier about that: doing a geobounded search around Langley/Pentagon -> save all geotagged content -> create script to detect usernames from social platforms -> infer other platforms / names -> poll FB graph API -> collect list of family members.
or another use case i examined: identify US aircraft carrier arriving in port -> geobounded queries for photos at tourist sites (crew on shore leave) -> connect to geobounded around carrier/facilities -> run multiple FB graph for friends -> infer carrier's crew list.
and a technical note when building systems for v v large geobounded queries: don't forget the curvature of the Earth when using multiple overlapping circles across wide areas. If your maths don't factor in the curve there will be gaps in your coverage :) #flatearth
the name I coined for the tool was The God Machine. Because it felt like you were watching the world from overhead and could deduce all sorts of behaviours by those lowly humans with their devices down on planet Earth lol *imagine* what Google and FB have.
another use case I did: New staff will often take selfies etc on first day of work -> they will usually geotag as social proof -> geobound query around company buildings -> monitor for new hires -> infer linkedin account -> detect hiring patterns by company/nationality/skillset.
Bonus: watch the growth of any base if imagery available. This is the US drone/helo/air base in Niamey as it grew from 2010 - 2017.
and lastly: the days of satellite imagery being out of date are numbered. We are not long from *realtime* or *near-realtime* high-res satellite imagery of the entire globe, on demand - via apps or API calls. @planetlabs already refreshes global image coverage *daily*
oh, and: @Vizlegal (I'm cofounder) is a similar idea to The God Machine, but focussed on all global legal/regulatory data, rather than geo/social data. Ultimately it also requires collection / analysis / anomaly detection / training machines -> drop me a line if curious :-)

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with Gavin Sheridan

Gavin Sheridan Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @gavinsblog

Oct 8, 2018
*Mulls yet another eNet thread*
*sigh*. Ok a short one. And then a longer one.
There's so many moving parts to the eNet/MAN/NBP/Granahan McCourt saga it can be difficult to keep up
Read 30 tweets
Oct 4, 2018
This is the hacking equipment setup in the boot of a car in The Hague by alleged GRU operatives seeking to hack into the OPCW.
Read 12 tweets
Oct 2, 2018
A brief thread on a new feature we've rolled out at @vizlegal that we're particularly proud of! Apologies to any non legal types (but techies might like it too!).
One complaint we've heard over and over again from Irish legal practitioners is trouble with court rules. "Messy", "difficult", "might be out of date" and some more choice words have been used to describe them..
So Irish court rules are bit like the CPRs in England & Wales. They're the legal basis/rules for how practitioners interact with the courts. In Ireland they are based on Statutory Instruments that stretch back to at least 1986.
Read 15 tweets
Oct 1, 2018
Just thinking about the Facebook hack again. Short thread I promise.
This is speculation and scenario speculation. But imagine for a moment it's a sophisticated attacker (which it might well be), and they have a purpose in mind.
First, build a target list of Facebook IDs you want to pwn. Let's say the top 2,000 people in the world whose accounts you want to compromise and see /exfiltrate their private Facebook messages, activity etc. We already know Zuck and Sheryl were compromised.
Read 9 tweets
Oct 1, 2018
So the silence from @facebook over the weekend is.. deafening.
It's the biggest hack of Facebook ever. And is up there with the biggest (if not *the* biggest) hacks of all time.
What I imagine very stressed engineers were doing over the weekend: 1) trying to estimate how much data was exfiltrated from Facebook servers by hackers 2) Trying to establish with third parties who use FB SSOs to see how much other data was exfiltrated
Read 11 tweets
Sep 30, 2018
No @DavidDavisMP, you can't "buy your drinks in Dublin with pounds".
he says he's "very familiar with the Irish border", and then confuses the customs union with customs and excise enforcement.
I was a barman in Dublin for 3 years. In Dublin, bars take euros. Sterling is a foreign currency. It's not complicated really. (bar *staff* would sometimes take sterling 1:1 when sterling was strong, but those days are long, long gone)
Read 4 tweets

Did Thread Reader help you today?

Support us! We are indie developers!


This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Don't want to be a Premium member but still want to support us?

Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal

Or Donate anonymously using crypto!

Ethereum

0xfe58350B80634f60Fa6Dc149a72b4DFbc17D341E copy

Bitcoin

3ATGMxNzCUFzxpMCHL5sWSt4DVtS8UqXpi copy

Thank you for your support!

Follow Us on Twitter!

:(