ddos-admin 
The spyware SpyX suffered a data breach in June 2024, an incident that has only now come to light. As a result, the records of 1.97 million users were exposed, including thousands of Apple device owners. The SpyX operator failed to notify either its customers or the affected individuals about the breach.
SpyX, along with two of its clones—MSafely and SpyPhone—harvested vast amounts of user data, including email addresses and even Apple ID credentials with passwords. This information came into the possession of security researcher Troy Hunt, who verified the authenticity of the leaked data. He noted that while the majority of compromised email addresses were linked to SpyX users, approximately 300,000 were associated with the two similar applications. According to Hunt, around 40% of the exposed email addresses had already been listed in Have I Been Pwned.
Though marketed as parental control software, SpyX is primarily used for covert surveillance of victims. Such applications are categorized as stalkerware (or “spouseware”), as they are frequently deployed for illicit monitoring of spouses or partners without their consent.
On Android devices, this type of spyware is installed manually, requiring physical access to the phone and the disabling of built-in security mechanisms. In contrast, Apple’s stricter security ecosystem makes direct installation more challenging, prompting stalkerware developers to exploit iCloud instead. By leveraging a victim’s login credentials, these applications extract device backups, gaining access to messages, photos, and other sensitive data.
The leaked files contain 17,000 Apple ID accounts with passwords stored in plaintext. Hunt contacted several affected users, who confirmed the legitimacy of the breach. To prevent further exploitation of compromised accounts, he forwarded the list of exposed Apple IDs to Apple.
Google also took action against SpyX, removing an associated Chrome extension. A company representative stated that Google Play and the Chrome Web Store strictly prohibit malicious software, urging users to immediately take steps to secure their accounts if they suspect a compromise.
To detect and remove SpyX, Android users are advised to enable Google Play Protect, which can block spyware applications. iPhone owners should review devices linked to their Apple ID, change their password, and enable two-factor authentication (2FA) for enhanced security.
Do Son 
