LetMeSpy spyware maker shuts down over data breach

Updated on: 07 August 2023

Vilius Petkauskas
Deputy Editor

Android spyware maker LetMeSpy will cease operations two months after hackers stole sensitive user information from its servers.

LetMeSpy has announced that it’ll shut down operations. Attackers breached the company’s systems in June, stole a trove of user data, and wiped the servers clean.

“We would like to kindly inform you that as of August 31st, 2023, the letmespy.com website will cease operations,” reads a message on the company’s website titled “permanent shutdown.”

During the June attack, malicious actors stole data, including call logs, SMS messages, and location data. Attackers may have also taken information that users provided via the registration process.

The Poland-based Android spyware maker marketed itself as a parental and employee control service. Installing LetMeSpy on target devices allowed users to read text messages, go through call logs, and track location.

The spyware maker said that it blocked access to user accounts immediately after the initial attacks, and users who want to retrieve any data should reach out directly to LetMeSpy. Any remaining data will be deleted by the end of September.

A copy of the LetMeSpy website, saved in late January 2023, indicates that the app was installed on over 236,000 devices. The Polish spyware maker boasted of snooping on over 65 million text messages, nearly 40 million call logs, and over 43 million locations.

The LetMeSpy app falls under a special category of spyware – stalkerware. A category of malware that’s designed to invade target privacy more intimately than regular spyware. Using stalkerware can be very dangerous, as experts warn it can cause psychological damage, including fear, anger, hypervigilance, and PTSD.