John McAfee, founder of the McAfee virus scanner, has been on the run since early November when police in the Central American country of Belize started seeking McAfee as a â€œperson of interestâ€ in the death of McAfeeâ€™s neighbor. Accompanied by a journalist with Vice magazine and a female friend, McAfee took a picture which was published by the magazine in yesterdayâ€™s online edition.
However, the journalist apparently omitted the fact that most smartphones add extra data to the digital image in the EXIF fields, such as creation time, camera maker and model and (for phones equipped with GPS) geotag information â€“ the exact longitude and longitude where the photo was taken.
EXIF data extraction carried by Akex Wilhelm of The Next Web however revealed that the journalist did not disable geotagging in the camera software, so GPS coordinates got stored along with other data within the picture, revealing the exact location of the fugitive.
Geotagging allows the user to remember where exactly photos were taken when taking a bunch of them, such as during a vacation. However, it is also a great privacy risk for photo owners, as they become easier to stalk by anyone who knows how to read EXIF metadata and who has access to the photos. This is why most social networks strip EXIF information during the upload process. However, images taken with phone or intelligent compact cameras posted directly on blogs preserve these details and make them accessible to anyone.
Yesterdayâ€™s incident should serve as a warning about the dangers of oversharing information over the web. After all, if a data security legend fell victim to it, regular computer users donâ€™t stand a chance.