Security News > 2023 > June > Miscreants leak texts and info siphoned by Android stalkerware app LetMeSpy

The stolen data has been circulating online for at least a few days, we're told, and the spyware's users - those who got the app to put on someone else's device - reportedly include government workers and a ton of US college students.

Yes, we appreciate the irony of the maker of a phone-monitoring app that boasts about secretly collecting call logs, text messages, and whereabouts while remaining "Invisible to the user" admitting that someone else gained unauthorized access to their information.

Simply put, people can get a paid-for or free copy of LetMeSpy, install it on someone else's Android phone - think a partner, employee, relative, etc - have the app hide itself from view, and then collect from that device copies of their messages, logs, and other data.

"As a result of the attack, the criminals gained access to email addresses, telephone numbers and the content of messages collected on accounts," according to an alert on the LetMeSpy login page.

For its part, LetMeSpy bills itself as a tool for parental and employee control - or even a helpful piece of software for absent-minded Android users prone to either losing or forgetting their phones.

You can read all the SMS messages and view call logs even if you do not have your phone with you! You always knows [sic] the exact location of a phone - checking locations of cell phone on the map.

News URL

https://go.theregister.com/feed/www.theregister.com/2023/06/27/letmespy_stalkerware_app_hacked/