Vangelis Stykas and Michael Gruhn have disclosed problems with hundreds of vulnerable GPS GPS services using open APIs and trivial passwords (123456), resulting in a multitude of privacy issues including direct tracking. Many of the vulnerable services have open directories exposing logged data. Vulnerable services were exposing location information, device model and type information, IMEI numbers, phone numbers, audio recordings, and images. The problems were compounded by the fact that most of the. vulnerable services had no contact information, likely due to the fact they are re-sellers.”]