mSpy software suffers a security breach

Security researcher Nitish Shah discovered an open database on the Internet that allowed anyone to consult the stored data, among which were passwords, call records, sms, contacts, notes and location data, belonging to mSpy software users.

This software is used to tracing and monitoring mobile devices and is used mainly by parents to record their children activity, although also by companies to control their employees.

Shah indicated that the first time he contacted mSpy was ignored, but when he contacted again on August 30, security chief of that company indicated that they were working to protect the systems. After the entry into force of the new GDPR regulation, the case could seriously affect the company if it does not notify to the affected people and demonstrates that it has implemented protective measures.