FlagThis

A data breach has impacted users of the spyware applications Cocospy and Spyic, potentially exposing sensitive personal data including messages, photos, and call logs. These consumer-grade spyware apps, sometimes called stalkerware or spouseware, covertly monitor private information on Android devices. The Cocospy breach alone exposed almost 1.8 million customer email addresses, which have been added to the Have I Been Pwned database.

TechCrunch reported on the breach and released a guide with steps for checking Android devices for stalkerware, as well as how to safely remove it. Stalkerware apps are often downloaded from outside official app stores, planted without permission, and hidden on the device to avoid detection. Signs of infection include unusual device behavior like overheating, slow performance, or excessive data usage.

ImgSrc: haveibeenpwned.com

References:

• cyberinsider.com - A data breach in the spyware applications Cocospy and Spyic has exposed the personal data of millions of people, including sensitive information such as messages, photos, and call logs. - 9h
• Have I Been Pwned latest breaches - In February 2025, the spyware service . The Cocospy breach alone exposed almost 1.8M customer email addresses which were provided to HIBP, and reportedly also enabled unauthorised access to captured m - 9h
• Dataconomy - This stalkerware breaches your Android: Fix it now - 6h
• @zackwhittaker - We also have guidance on what you can do if you think you've been compromised by Cocospy and Spyic, which can affect both Android and iPhone/iPad users. - 2h

Classification:

• HashTags: spyware stalkerware
• Company: Cocospy, Spyic
• Target: Users of Cocospy and Spyic
• Product: Cocospy, Spyic
• Feature: Data Exposure
• Type: DataBreach
• Severity: Major