Updated on 2022-12-13
Xnspy, a company that advertises itself as a way to catch “a cheating spouse/partner,” has misconfigured some of its online infrastructure and leaked data collected from more than 60,000 Android and iOS devices where its spying apps were installed. The data was found by two security researchers, who presented their findings at the BSides London security conference last week. The data mostly contained iCloud backups, but also more than 10,000 iCloud email addresses and passwords and 6,600 authentication tokens that anyone could abuse to take over iCloud accounts if they discovered Xnspy’s exposed servers. TechCrunch reported that the leaky servers helped it identify the app’s maker as Konext, a small development startup in Lahore, Pakistan. Following the report, Kaspersky’s Costin Raiu has shared a list of domains that can be used to detect or block Xnspy spyware operations on a local or enterprise network.
Researchers found that the phone monitoring app Xnspy has stolen data, including credentials and private keys, from at least 60,000 Android phones and thousands of iPhones, dating back to 2014. Read more: Xnspy stalkerware spied on thousands of iPhones and Android devices