Skip to content

Massive Spyzie data leak exposes over half a million Android devices

  • by
  • 2 min read

A little-known surveillance operation called Spyzie has compromised more than 500,000 Android devices and nearly 5,000 iPhones and iPads. The affected owners, mostly unaware of the breach, have had their personal data — including messages, photos, and location — exposed due to a critical security law.

Spyzie shares the same security vulnerability as Cocospy and Spyic, two other stalkerware applications built on identical source code, reports TechCrunch. This flaw allows unauthorised access to exfiltrated phone data, putting millions of individuals at risk.

In addition to leaking victims’ data, the bug also exposes the email addresses of Spyzie’s customers — those who planted the app to monitor someone else’s device.

By exploiting the vulnerability, an anonymous researcher retrieved 518,643 unique customer email addresses, which were shared with relevant security experts. Despite its minimal online presence and Google’s advertising restrictions, Spyzie has attracted thousands of paying customers.

This is an image of spyware malware cybersecurity privacy featured 31

Collectively, Spyzie, Cocospy, and Spyic have more than three million users, reflecting consumer spyware’s growing popularity. Since 2017, at least 24 stalkerware operations have been hacked or have leaked sensitive user data due to poor security practices.

Spyzie must be manually installed on Android devices, requiring physical access to the device. This makes it particularly common in situations where the perpetrator knows the victim’s passcode, such as in intimate partner abuse.

For Apple devices, Spyzie operates differently. Instead of installing an app directly, the spyware accesses data stored in iCloud using stolen Apple credentials. The leaked records indicate compromised Apple devices dating back to February 2020, with the most recent cases reported in July 2024.

Researchers have advised users to dial **001** and press the call button to remove spyware on Android. If the spyware is installed on the victim’s device, the app will appear on the screen. However, directly locating and removing the app isn’t an option for Apple users. Enabling two-factor authorisation has been advised to prevent unauthorised access to your iCloud data.

In the News: Cellebrite bans Serbia for misusing equipment

Kumar Hemant

Kumar Hemant

Deputy Editor at Candid.Technology. Hemant writes at the intersection of tech and culture and has a keen interest in science, social issues and international relations. You can contact him here: kumarhemant@pm.me

Related Reads

This is an image of instagram featured

Meta expands AI-powered age verification on Instagram

This is an image of gmail featured 134

Google OAuth flaw exploited to bypass Gmail security filters

This is an image of data breach featured

Legends International suffers data breach affecting employees and venue visitors

This is an image of cyber security hacked breach

Freshly discovered Windows vulnerability already exploited in the wild

This is an image of court featured ss1

Indian consumer courts to accept complaints against WhatsApp

  • by
  • In News
This is an image of discord203947

Discord verifies age with ID and face scans for select users

>