A hacktivist has scraped more than half-a-million payment records from a provider of consumer-grade stalkerware phone surveillance apps, exposing the email addresses and partial payment information of customers who paid to spy on others. The transactions include records for services such as Geofinder and uMobix, as well as Peekviewer (formerly Glassagram), offered by the Ukrainian company Struktura.
The data set also includes transaction records from Xnspy, a known stalkerware app that in 2022 spilled private data from tens of thousands of Android and iPhone users. According to TechCrunch, the breach highlights the broad pool of monitoring tools marketed for personal surveillance. The post notes that the vendor’s offerings purport to enable access to private social media accounts among other monitoring services. This incident adds to ongoing concerns about the handling and security of consumer surveillance software and the exposure of users’ payment information.