ShellCodeX Breach Report
mSpy (2024) Data Breach
mspy.com
Verified breach
Sensitive
Accounts exposed
2,394,179
Breach date
09 Jun 2024
Added to tracker
11 Jul 2024
Data classes
4
What happened
In June 2024, a huge trove of data from spyware maker mSpy was obtained by hacktivists and published online. Comprising of 142GB of user data and support tickets along with 176GB of more than half a million attachments, the data contained 2.4M unique email addresses, IP addresses names and photos. The data was predominantly support tickets seeking help to install the spyware on target devices, whilst the attachments contained various data including screen grans of financial transactions, photos of credit cards and nude selfies.
Exposed data
Email addresses
IP addresses
Names
Photos
Recommended actions
- Watch for targeted phishing emails referencing mSpy (2024) โ attackers weaponise breach data quickly.
- Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected?
Check whether your email address appears in this breach.
Check on HIBP