Android-based telephone tracking app LetMeSpy has disclosed a safety breach that allowed an unauthorized third-party to thieve delicate information related to 1000’s of Android customers.
“As a result of the attack, the criminals gained access to email addresses, telephone numbers and the content of messages collected on accounts,” LetMeSpy stated in a press release on its web page, noting the incident took park on June 21, 2023.
Following the invention of the hack, LetMeSpy stated it notified regulation enforcement and information coverage government. It’s additionally taking steps to droop all account-related purposes till additional realize. The identification of the warning actor and their motives are lately unknown.
The paintings of a Polish corporate named Radeal, LetMeSpy is obtainable as a per month subscription ($6 for Same old or $12 for Professional), permitting its shoppers to eavesdrop on others just by putting in the device on their gadgets. An Web Archive snapshot from December 2013 displays that it’s billed as a device for parental or worker keep an eye on.
Defend In opposition to Insider Blackmails: Grasp SaaS Safety Posture Control
Fearful about insider warnings? We’ve were given you lined! Fasten this webinar to discover sensible methods and the secrets and techniques of proactive safety with SaaS Safety Posture Control.
Fasten These days
LetMeSpy comes with a large length of options to bind name woods, SMS messages, and geolocations, all of which may also be accessed from the web page. In an struggle to evade detection and elimination, the app’s icon may also be confidential from the tool’s house display launcher.
As of January 2023, the stalkerware app has been worn to trace 236,322 telephones the world over, harvesting over 63.5 million textual content messages, 39.7 million name woods, and 43.2 million places.
Polish safety analysis weblog Niebezpiecznik, which first reported the breach and analyzed a sell off of the stolen information, stated it contains about 26,000 electronic mail addresses, 16,000 SMS messages, and a database of sufferers’ places.
An extra evaluate of the leaked knowledge via TechCrunch has unmistakable that the knowledge is going the entire as far back as 2013, when LetMeSpy become operational. The information additionally comprise information from no less than 13,000 compromised gadgets. A majority of the sufferers are positioned within the U.S., Republic of India, and portions of Africa.