A tower dump is a law-enforcement request for all cellular phone numbers that connected to a specific cell tower during a defined time window. Distinct from targeted CSLI (which requests one person’s location history) by reversing the query: rather than asking “where was this person,” it asks “who was at this place.” Used in investigation of crimes with known location and time but unknown suspect; the structural privacy concern is the bulk capture of every phone in the tower’s coverage area regardless of investigative relevance.
What it means in practice
A tower dump for an event at a specific corner at a specific hour might return thousands of phone numbers: every phone that connected to the relevant tower during the window. The investigators then filter (cross-reference against suspect lists, check for repeat appearances at related crime scenes, contact subscribers to interview), but the initial collection is bulk and includes every uninvolved bystander whose phone happened to be in range. Pre-Carpenter, tower dumps were obtained on subpoena or court order short of warrant; post-Carpenter, lower courts have begun applying warrant requirements to tower dumps as a logical extension of Carpenter’s reasoning, with circuit splits and ongoing litigation. The 2024-26 federal-court trend has been toward warrant requirement, but practice varies by jurisdiction. Even where warrant-protected, the bulk nature of the request means warrants approve mass collection for narrow individual-targeting purposes, which civil-liberties organizations characterize as general-warrant-equivalent.
Where it shows up
Used in: investigations of crimes with known time and location but unknown suspect (robberies, shootings, kidnappings, terrorism investigations), protest-context investigations where law enforcement seeks to identify all participants in a specific demonstration (the documented use against Black Lives Matter protests, January 6 investigation, Hong Kong-related solidarity events), and large-scale event investigations where the tower-dump output is the starting point for further inquiry. Civil-liberties concerns: the bulk collection of every phone in range, the use to identify protest participants whose only “investigative relevance” is presence at the protest, and the structural extension to “geofence warrants” that ask Google for everyone whose location data put them at a place during a window. The Predaxia operational frame: protest attendance produces a tower-dump-reachable record of presence; the operational discipline for high-target attendance is to leave the phone elsewhere or to use a burner that is not associated with the user’s identity.
What you can change today
Three structural defenses against tower-dump exposure. First, for protest attendance and other contexts where presence-at-location should not be linked to identity, leave the primary phone home; carry no phone, or carry a burner phone purchased with cash and not associated with the user’s identifiers. Second, awareness that geofence warrants extend the same logic to app-collected location data (Google Sensorvault, equivalent corpora at other providers); the defense is the same location-data minimization (disable Location History, disable Significant Locations, audit Always-permission apps). Third, follow the post-Carpenter litigation around tower dumps and geofence warrants; the legal protection has been strengthening but unevenly, and the operational implications track the case law of the federal circuit you are in.
Related articles
- Digital security for diplomats and expats in high-risk countries.
- Counter-surveillance for journalists. The patterns that get noticed before the story is filed.
- Geofence warrants. The investigation tool that does not need a suspect.
- Burner phones in 2026. The cheap Nokia is dead. Here is what works now.
