In May 2024, mSpy suffered a data breach when unknown individuals managed to steal millions of customer support tickets. Customer data from the phone tracking app back to 2014 was involved.
TechCrunch analyzed the leaked dataset — more than 100 gigabytes of Zendesk records — and reports:
Some of the email addresses belong to unwitting victims who were targeted by an mSpy customer. The data also shows that some journalists contacted the company for comment following the company’s last known breach in 2018. And, on several occasions, U.S. law enforcement agents filed or sought to file subpoenas and legal demands with mSpy. In one case following a brief email exchange, an mSpy representative provided the billing and address information about an mSpy customer — an alleged criminal suspect in a kidnapping and homicide case — to an FBI agent.
Read more at TechCrunch.