We review vendors based on rigorous testing and research but also take into account your feedback and our affiliate commission with providers. Some providers are owned by our parent company.
Learn more
vpnMentor was established in 2014 to review VPN services and cover privacy-related stories. Today, our team of hundreds of cybersecurity researchers, writers, and editors continues to help readers fight for their online freedom in partnership with Kape Technologies PLC, which also owns the following products: ExpressVPN, CyberGhost, and Private Internet Access which may be ranked and reviewed on this website. The reviews published on vpnMentor are believed to be accurate as of the date of each article, and written according to our strict reviewing standards that prioritize professional and honest examination of the reviewer, taking into account the technical capabilities and qualities of the product together with its commercial value for users. The rankings and reviews we publish may also take into consideration the common ownership mentioned above, and affiliate commissions we earn for purchases through links on our website. We do not review all VPN providers and information is believed to be accurate as of the date of each article.
Advertising Disclosure

vpnMentor was established in 2014 to review VPN services and cover privacy-related stories. Today, our team of hundreds of cybersecurity researchers, writers, and editors continues to help readers fight for their online freedom in partnership with Kape Technologies PLC, which also owns the following products: ExpressVPN, CyberGhost, and Private Internet Access which may be ranked and reviewed on this website. The reviews published on vpnMentor are believed to be accurate as of the date of each article, and written according to our strict reviewing standards that prioritize professional and honest examination of the reviewer, taking into account the technical capabilities and qualities of the product together with its commercial value for users. The rankings and reviews we publish may also take into consideration the common ownership mentioned above, and affiliate commissions we earn for purchases through links on our website. We do not review all VPN providers and information is believed to be accurate as of the date of each article.

LetMeSpy, a Mobile Phone Spyware App, Was Hacked

LetMeSpy, a Mobile Phone Spyware App, Was Hacked
Husain Parvez Published on 3rd July 2023 Cybersecurity Researcher

The research team at Niebezpiecznik (a Polish security blog) uncovered the hack that stole messages, call logs, and locations intercepted by a widely used phone monitoring app.

LetMeSpy published a notice stating that the incident occurred on June 21, and “as a result of the attack, the criminals gained access to email addresses, telephone numbers, and the content of messages collected on accounts."

LetMeSpy is a phone monitoring application marketed for parental control or employee monitoring. It is designed to operate discreetly, remaining hidden on a phone's home screen, making it challenging to detect and uninstall. These types of applications, commonly referred to as stalkerware or spouseware, are typically installed by individuals who have physical access to someone's phone without their consent or awareness.

The DailyDot highlighted the frequent presence of university email domains on the user list, indicating that stalkerware is likely prevalent among college students in the US. Furthermore, the data included government domains, instances of drug trades, and admissions by some users regarding their use of the app for spying on others. An email associated with a police department in Louisiana was also identified within the compromised data.

When Niebezpiecznik reached out to the spyware maker for comment, the hacker allegedly replied instead, asserting their control over the domain of the spyware maker. The identity of the perpetrators behind the LetMeSpy hack and their motivations remain unknown. According to TechCrunch, the threat actor hinted at having erased LetMeSpy's databases stored on the server, and later that day, a copy of the hacked database emerged online.

While LetMeSpy has informed law enforcement and its local data protection authority, UODO, about the incident, it remains uncertain whether the company will extend notifications to individuals whose phones have been compromised.

About the Author

Husain Parvez is a Cybersecurity Researcher and News Writer at vpnMentor, focusing on VPN reviews, detailed how-to guides, and hands-on tutorials. Husain is also a part of the vpnMentor Cybersecurity News bulletin and loves covering the latest events in cyberspace and data privacy.

Please, comment on how to improve this article. Your feedback matters!

Leave a comment

Sorry, links are not allowed in this field!

Name should contain at least 3 letters

The field content should not exceed 80 letters

Sorry, links are not allowed in this field!

Please enter a valid email address