There is a concerning trend in the industry where individuals seek to monitor and spy on their families through various apps marketed as stalkerware. These apps allow users to remotely access their victims’ phones, raising significant privacy concerns.
Despite the sensitive nature of this data, many of these companies are experiencing significant breaches, resulting in the exposure of vast amounts of customer information.
TechCrunch’s investigation revealed that since 2017, at least 21 stalkerware companies have fallen victim to hacks, exposing confidential data of customers and victims online. This alarming trend indicates a widespread vulnerability in the stalkerware industry.
The recent breach of Spytech in 2024 is just one example of the numerous incidents that have plagued stalkerware companies. These breaches have exposed activity logs, customer support tickets, and other sensitive data, highlighting the risks associated with using such intrusive software.
The proliferation of stalkerware apps like mSpy and pcTattletale has raised concerns about privacy and ethical implications. These apps are often marketed as tools to catch cheating partners, promoting illegal and unethical behavior.
Hackers have targeted these companies repeatedly, exposing their lax security practices and putting both customers and victims at risk. The industry’s lack of concern for data protection underscores the irresponsible nature of stalkerware usage.
A history of stalkerware hacks
The series of stalkerware breaches began in 2017 with high-profile hacks on companies like Retina-X and FlexiSpy. These breaches revealed the extent of customer data exposed and prompted hackers to take action against what they perceived as a toxic industry.
Despite these breaches and public scrutiny, stalkerware companies like FlexiSpy continue to operate, signaling a lack of accountability in the industry. The repeated incidents of hacks and data exposure demonstrate the urgent need for greater cybersecurity measures.
The vulnerabilities in stalkerware apps have led to a string of breaches and data leaks, exposing personal information of targets and customers. This alarming trend highlights the risks associated with using such intrusive surveillance tools.
Hacked, but unrepented
Of the 21 stalkerware companies identified, eight have ceased operations following security breaches. The Federal Trade Commission took action against SpyFone and its CEO, banning them from the surveillance industry after a security lapse.
Despite some companies shutting down, there are concerns about rebranding and the resurgence of stalkerware operations under different names. The lack of lasting consequences for these companies highlights the challenges in combating this unethical industry.
While there are signs of declining stalkerware usage, the risks associated with these apps remain significant. Security experts warn about the potential for stalking and abuse facilitated by stalkerware, urging users to refrain from using such intrusive surveillance tools.
Say no to stalkerware
Using stalkerware to monitor loved ones is not only unethical but also illegal in many jurisdictions. The repeated breaches in the industry highlight the inability of stalkerware companies to protect data, putting both customers and targets at risk.
Parental monitoring should be done with transparency and consent, avoiding insecure stalkerware apps that can compromise personal information. Utilizing built-in parental tracking tools in devices is a safer and more ethical way to monitor children’s online activities.
Recap of breaches and leaks
The list of stalkerware companies that have been hacked or leaked data since 2017 highlights the pervasive issue of data breaches in the industry. These incidents underscore the urgent need for greater cybersecurity measures to protect both customers and targets.
Updated on July 25 to include Spytech as the latest spyware to be breached.
If you or someone you know needs help, the National Domestic Violence Hotline (1-800-799-7233) provides 24/7 free, confidential support to victims of domestic abuse and violence. The Coalition Against Stalkerware has resources if you think your phone has been compromised by spyware.
