ShellCodeX
Tools โ€ข Events โ€ข News โ€ข Insights
ShellCodeX Breach Report

mSpy (2024) Data Breach

mspy.com
Significant exposure
Verified breach Sensitive
Accounts exposed 2,394,179
Breach date 09 Jun 2024
Added to tracker 11 Jul 2024
Data classes 4

What happened

In June 2024, a huge trove of data from spyware maker mSpy was obtained by hacktivists and published online. Comprising of 142GB of user data and support tickets along with 176GB of more than half a million attachments, the data contained 2.4M unique email addresses, IP addresses names and photos. The data was predominantly support tickets seeking help to install the spyware on target devices, whilst the attachments contained various data including screen grans of financial transactions, photos of credit cards and nude selfies.

Exposed data

Email addresses IP addresses Names Photos

Recommended actions

  • Watch for targeted phishing emails referencing mSpy (2024) โ€” attackers weaponise breach data quickly.
  • Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected? Check whether your email address appears in this breach.
Check on HIBP