US Spyware maker hit by major data breach
Learn More
Spytech, a relatively unknown spyware manufacturer based in Minnesota, has suffered a major data breach. This breach has exposed the clandestine surveillance of thousands of devices worldwide, unveiling the covert operations of Spytech's monitoring software.
Spytech, which dates back to at least 1998, has largely operated under the radar until 2009, when it became known that an Ohio man used its spyware to infect a children’s hospital computer system. Spytech's spyware, including products like Realtime-Spy and SpyAgent, is marketed under the guise of parental monitoring but is also advertised for spousal surveillance.
A substantial cache of files extracted was from Spytech's servers, containing detailed activity logs from various devices, including phones, tablets, and computers, with some logs dating as recently as June 2024.
The breach has compromised more than 10,000 devices globally, with records dating back to 2013. The spyware has affected a wide range of devices, including:
- Windows PCs
- Android devices
- Macs
- Chromebooks
The nature of the attack is not disclosed.
The data revealed that most of the compromised devices were Windows PCs, with a lesser extent affecting Android devices, Macs, and Chromebooks. Alarmingly, the logs, which include keystrokes, screen taps, web browsing history, device activity usage, and precise geolocation data for Android devices, were not encrypted.
TechCrunch's analysis of the mobile-only data highlighted significant clusters of monitored devices across Europe and the United States, with localized devices also present in Africa, Asia, Australia, and the Middle East.
Spytech's chief executive has expressed surprise at the breach. He did not disclose whether the company plans to notify its customers or comply with data breach notification laws, leaving a significant question mark over the company's next steps.
