New spyware found to be snooping on thousands of Android and iOS users

News
By published

Another stalkerware app found leaking data

Stalkerware
(Image credit: Shutterstock.com / New Africa)
  • Spyzie was found to be vulnerable to the same flaw as Cocospy and Spyzie
  • More than half a million Android users were exposed
  • Roughly 4,900 iOS users were exposed as well

Hundreds of thousands of Android users, as well as several thousand iPhone users, have had their sensitive data compromised by a spouseware app, called Spyzie.

The apps were found leaking email addresses, text messages, call logs, photographs, and other sensitive data, belonging to millions of people who, without their knowledge or consent, have had these apps installed on their devices. The people who installed those apps, in most cases partners, parents, significant others, have also had their email addresses exposed in the same manner.

The researcher who found all of these flaws is not sharing the details just yet, claiming they’re quite simple to exploit and haven’t been addressed yet.

Email addresses and more

Spyware apps, often also called “spouseware”, are apps that people covertly install on mobile devices belonging to their partners, children, or similar. They are advertised as legitimate monitoring apps, but are essentially operating in the grey zone and are not allowed on major app stores, such as the App Store or Play Store.

This is the third such app with the same flaw, after a cybersecurity researcher recently analyzed Cocospy and Spyic, two other popular spyware apps whose code apparently has significant overlaps, allowing the researcher to pull sensitive information from their servers.

The researcher managed to exfiltrate 1.81 million of email addresses used to register with Cocospy, and roughly 880,000 addresses used for Spyic. Besides email addresses, the researcher managed to access most of the data harvested by the apps, including pictures, messages, and call logs.

For Spyzie, the researcher managed to collect more than 510,000 unique email addresses of Android users, and sensitive data on at least 4,900 iPhone and iPad users.

The operators did not respond to media inquiries and have not, at press time, addressed the vulnerabilities.

Via TechCrunch

You might also like

Sead Fadilpašić

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

You must confirm your public display name before commenting

Please logout and then login again, you will then be prompted to enter your display name.

Read more
Kaspersky Report on Stalkerware
Security flaw in popular stalkerware apps is exposing phone data of millions
Spyware
Government-linked Italian spyware maker caught distributing malicious Android apps
In this photo illustration a Google Play logo seen displayed on a smartphone.
Why is there so much spyware hidden in the Play Store?
A close-up photo of an iPhone, with the App Store icon prominent in the center of the image.
Thousands of iOS apps found to expose user data
Map shown on smartphone
Thousands of GPS tracking customers have info leaked following data breach
Data leak
This top security camera streaming app may have been putting thousands of users at risk
Latest in Security
AI tools.
Not even fairy tales are safe - researchers weaponise bedtime stories to jailbreak AI chatbots and create malware
Data leak
Top California sperm bank suffers embarrassing leak
An Android phone being held in the hand
These malicious Android apps were installed over 60 million times - here's how to stay safe
ransomware avast
Billions of credentials were stolen from businesses around the world in 2024
Avast cybersecurity
An unpatched Windows zero-day flaw has been exploited by 11 nation-state attackers
ID theft
Hackers claim Orange attack, threaten to leak 1TB of data
Latest in News
The Nanoleaf PC Screen Mirror Lightstrip being used on a desktop computer.
Mac gaming could get an intriguing boost – but not in the way you'd expect
Snapdragon G Series
Qualcomm poised to muscle in on AMD's territory with powerful gaming handheld processors
Student sat at a desk with a laptop in a dormitory looking at a mobile phone
Windows 11 could eventually help you understand how fast your PC is - as well as offer tips for making your PC or laptop faster for free
Veresa attacks an enemy in Genshin Impact.
Genshin Impact Version 5.5 arrives next week, adding a new five star character obsessed with food
Google Pixel 9a
Google just launched the Pixel 9a – and I reckon it embarrasses the iPhone 16e
AI tools.
Not even fairy tales are safe - researchers weaponise bedtime stories to jailbreak AI chatbots and create malware
More about security
Data leak

Top California sperm bank suffers embarrassing leak
AI tools.

Not even fairy tales are safe - researchers weaponise bedtime stories to jailbreak AI chatbots and create malware
The Nanoleaf PC Screen Mirror Lightstrip being used on a desktop computer.

Mac gaming could get an intriguing boost – but not in the way you'd expect

See more latest
Most Popular
The Nanoleaf PC Screen Mirror Lightstrip being used on a desktop computer.
Mac gaming could get an intriguing boost – but not in the way you'd expect
Data leak
Top California sperm bank suffers embarrassing leak
Snapdragon G Series
Qualcomm poised to muscle in on AMD's territory with powerful gaming handheld processors
NYT Strands homescreen on a mobile phone screen, on a light blue background
NYT Strands hints and answers for Thursday, March 20 (game #382)
NYT Connections homescreen on a phone, on a purple background
NYT Connections hints and answers for Thursday, March 20 (game #648)
Quordle on a smartphone held in a hand
Quordle hints and answers for Thursday, March 20 (game #1151)
Veresa attacks an enemy in Genshin Impact.
Genshin Impact Version 5.5 arrives next week, adding a new five star character obsessed with food
AI tools.
Not even fairy tales are safe - researchers weaponise bedtime stories to jailbreak AI chatbots and create malware
Amrit Kaur and Reneé Rapp in The Sex Lives of College Girls.
Max cancels The Sex Lives of College Girls but the hit HBO show might find a new streaming home elsewhere
Student sat at a desk with a laptop in a dormitory looking at a mobile phone
Windows 11 could eventually help you understand how fast your PC is - as well as offer tips for making your PC or laptop faster for free