What's New: The Official Confirmation

On April 14, U.S. Central Command sent a letter to Oregon Democratic Sen. Ron Wyden acknowledging it had "received multiple threat reports concerning adversary exploitation of commercial location data to target or surveil U.S. personnel in theater," according to Reuters, which obtained the letter.

This marks the first official, on-the-record confirmation that troops in active war zones were targeted using data harvested from the commercial surveillance economy — the same economy that serves ads for sneakers.

What CENTCOM Actually Said

CENTCOM's letter stated directly that "commercial location data can be used to identify where U.S. troops congregate and their pattern of life, which can be exploited by adversaries to target attacks such as missiles, drones, and roadside bombs, as well as for counterintelligence purposes."

CENTCOM's area of responsibility covers the Persian Gulf — where U.S. forces are currently facing off against Iran over the Strait of Hormuz. That context matters.

The letter provided no operational specifics. No dates. No unit names. No body counts linked to data-enabled attacks.

Iran Built a "Target Bank" — And This Is How

After Iranian drone strikes hit a Crowne Plaza hotel in Bahrain — wounding two Department of Defense officials — a senior Iranian official told Drop Site News that Iran had constructed a "target bank" of American and Israeli personnel. The official said the bank was built after the 2025 12-Day War and that pinpointing the residences and locations of U.S. forces "really caught the Americans and Israelis off guard."

The Iranian official did not detail the methodology. Iran is building location-specific target lists, and the Pentagon just confirmed adversaries are buying commercial location data to track U.S. troops.

Congress Is Demanding Answers — And Getting Stonewalled

Wyden didn't sit on the April 14 letter. On May 28, he and a bipartisan group of legislators sent a follow-up letter to the Pentagon demanding more information, according to Military Times.

Their complaint: efforts to get additional details from military officials "had been unsuccessful." In other words, the Pentagon confirmed the threat exists and then went quiet.

Wyden's statement was direct: "It's time to start treating the adtech industry as a national security threat," he said, per Reuters.

This isn't a partisan position. The same data brokers selling location profiles to advertisers are selling them to anyone with a credit card — including people who want to harm American soldiers.

This Isn't a New Problem — It's Just Newly Official

The building blocks of this vulnerability have been visible for years.

As far back as 2016, a U.S. defense contractor used commercially available location data to track special operations forces from their U.S. bases to a sensitive staging post in Syria, according to the Wall Street Journal.

More recently, journalists at Wired and two German news outlets used billions of data coordinates from a single broker to map the movements of people at or near 11 U.S. military and intelligence sites in Germany, per Military Times.

None of that triggered a legislative fix. The data market kept operating.

What Mainstream Media Is Missing

Most coverage frames this as a privacy story. This is a force protection failure enabled by a regulatory vacuum that Congress has tolerated for decades. The adtech industry operates with almost no restriction on who can buy precise location data. No national security carveout. No prohibition on sales to foreign entities. No requirement that brokers vet buyers.

The Pentagon's April 14 letter is being treated as a revelation, yet the intelligence community has known about this vector for years. What's changed is that it's now documented in an official congressional response tied to an active conflict where Americans got hurt.

Also notable: the Pentagon did not respond to Reuters' request for comment after the letter was made public. The institution that just confirmed its troops were targeted by commercial data hasn't addressed it publicly.

What This Means for the Troops

Every soldier, sailor, airman, and Marine deployed to the Middle East right now is carrying a smartphone. Apps on that phone are likely collecting location data. That data is being sold. Adversaries are buying it.

The Pentagon confirmed this on April 14. Congress asked follow-up questions. The Pentagon went silent.

Meanwhile, American troops are downrange.

A contractor can track special ops from a U.S. base to Syria using data available online, and Iran is building target banks of U.S. personnel in the Gulf. This is a present threat, not a future one. The people responsible for addressing it have had nearly a decade of warnings without stopping it.