A French Navy officer unintentionally revealed the precise location of the Charles de Gaulle aircraft carrier by publicly logging a run on the fitness tracking app Strava. The incident, first reported by Le Monde, highlights the ongoing security risks posed by location-tracking apps and lax operational security.
How The Leak Happened
The officer recorded a workout while on deck, and Strava’s default public settings automatically broadcast the route. This data revealed the carrier’s position in the Mediterranean Sea as it transited toward the Middle East. While President Macron had already announced the deployment, pinpointing the ship’s exact movements poses a clear operational security risk.
A Recurring Problem
This is not an isolated case. Strava has repeatedly demonstrated its potential for exposing sensitive locations. In 2024, Le Monde also tracked President Macron’s movements by analyzing the public workout data of his security detail. The app’s default public settings mean that any logged activity is immediately visible unless privacy settings are manually adjusted.
Military Response & Broader Implications
The French Armed Forces acknowledged the incident as a breach of guidelines, stating that sailors are regularly briefed on these risks. However, the fact that such a leak occurred underscores the difficulty of enforcing strict operational security in a world where personal technology is widespread. The incident serves as a reminder that even seemingly harmless apps can compromise sensitive data.
Ultimately, this leak emphasizes that individuals in sensitive roles must exercise extreme caution when using public fitness trackers, and organizations must reinforce the importance of privacy settings to mitigate security risks.
This incident is a warning to all users of location-tracking apps, not just military personnel: ensure your privacy settings are configured to protect sensitive information.
