LetMeSpy

LetMeSpy functions as the developer of a stalkerware application that is designed to operate covertly on mobile devices, concealing its presence while gathering a broad spectrum of personal information from the phone it infects. The software captures email addresses, telephone numbers, the content of messages, call logs, geolocation coordinates, password hashes and payment details, transmitting this data to servers controlled by the operator. It is offered to individuals who wish to monitor another person's device without their knowledge, often advertised under the pretenses of parental control or employee oversight despite its frequent misuse for illicit surveillance. The company’s headquarters are located in Poland, establishing its operational base within that jurisdiction.

In June 2023, a cyberattack targeted the Polish developer behind LetMeSpy, resulting in unauthorized access to the servers that store the harvested data and the application’s global configuration files. The breach exposed information from roughly ten thousand devices on which the stalkerware had been installed, although a significant portion of those installations were reported to be inactive at the time of the incident. The exfiltrated dataset included the same categories of sensitive user data that the application routinely collects, such as communications, location history and financial identifiers, affecting both the individuals being monitored and the users who had deployed the software. Following the discovery of the intrusion, law enforcement officials were notified, and the application’s account management functions were suspended to prevent further access to the compromised information.

The incident underscored LetMeSpy’s distinct focus on stealthy mobile surveillance, highlighting its technical capability to remain hidden while extracting extensive personal data from compromised phones. The suspension of account functions after the breach demonstrated a reactive measure aimed at limiting the operator’s continued control over the stolen data and the existing installations. No explicit details regarding parent companies, subsidiary relationships or ownership structure are provided in the publicly available sources, suggesting that LetMeSpy operates as an independent entity rooted in Poland. The compromise revealed that the risks associated with such stalkerware extend to both the surveillance targets and the individuals who install the monitoring tool, illustrating the dual exposure inherent in these covert monitoring products.