Connect with us

Hi, what are you looking for?


Data Breaches

Sensitive Information Stolen in LetMeSpy Stalkerware Hack

Emails, phone numbers, calls logs, and collected messages stolen in data breach at Android stalkware LetMeSpy.

Radeal, the Polish developer of Android stalkerware ‘LetMeSpy’, is informing users that their personal information and collected data was stolen as a result of a cyberattack.

A free application, LetMeSpy, just as its name suggests, collects information from the phones it has been installed on, including call logs, text messages, and device location.

The phone monitoring application is marketed as offering parental control and employee monitoring capabilities, but it essentially allows users to spy on others after installing the software on their devices, likely without their knowledge.

In fact, once up and running on a device, LetMeSpy hides its icon from the phone’s home screen, to prevent detection and removal.

The application uploads the collected information to remote servers, where the user who installed it can access it, essentially tracking a person in real time.

In an incident notification posted on the LetMeSpy login page, Radeal is informing users that it fell victim to a cyberattack that resulted in “unauthorized access to the data of website users”.

“As a result of the attack, the criminals gained access to e-mail addresses, telephone numbers and the content of messages collected on accounts,” Radeal says.

Advertisement. Scroll to continue reading.

The application developer suspended all account-related functions of the website, promising to restore them after mitigating the attack. Law enforcement was also informed about the incident.

According to security researcher Maia Arson Crimew, who received a copy of the allegedly stolen data, the attackers got their hands on call logs, messages, user IDs, email addresses, password hashes, geolocation logs, IP addresses, payment logs, and phone information.

The data also shows that LetMeSpy was installed on roughly 10,000 phones, although a large percentage of these devices never sent activity updates.

Crimew also discovered that at least three government workers, a Broussard police officer, and an employee at a rival stalkware company signed up for the application, though they do not appear to have used it.

However, Crimew did notice that a significant number of LetMeSpy users are US college students, likely looking to spy on their partners. The stolen information also includes global configuration data for the site, the researcher notes.

Related: American Airlines, Southwest Airlines Impacted by Data Breach at Third-Party Provider

Related: Intellihartx Informs 490k Patients of GoAnywhere-Related Data Breach

Related: Toyota Discloses New Data Breach Involving Vehicle, Customer Information

Written By

Ionut Arghire is an international correspondent for SecurityWeek.

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join security experts as they discuss ZTNA’s untapped potential to both reduce cyber risk and empower the business.


Join Microsoft and Finite State for a webinar that will introduce a new strategy for securing the software supply chain.


Expert Insights

Related Content

Data Breaches

OpenAI has confirmed a ChatGPT data breach on the same day a security firm reported seeing the use of a component affected by an...


Zendesk is informing customers about a data breach that started with an SMS phishing campaign targeting the company’s employees.

Data Breaches

LastPass DevOp engineer's home computer hacked and implanted with keylogging malware as part of a sustained cyberattack that exfiltrated corporate data from the cloud...

Data Breaches

A group of hackers has leaked Atlassian employee records and floorplans, information that was obtained from third-party workplace platform Envoy.

Data Breaches

GoTo said an unidentified threat actor stole encrypted backups and an encryption key for a portion of that data during a 2022 breach.

Data Breaches

AT&T is notifying millions of wireless customers that their CPNI was compromised in a data breach at a third-party vendor.

Data Breaches

KFC and Taco Bell parent company Yum Brands says personal information was compromised in a January 2023 ransomware attack.


Instant Checkmate and TruthFinder have disclosed data breaches affecting a total of more than 20 million users.