Know – Why FTC banned Stalkerware maker Spyfone from the Surveillance business?

FTC has bans Stalkerware maker Spyfone and CEO Scott Zukerman from the surveillance business after unavailing to protect its customers’ devices from attackers and transmitting information on their location and activity. Stalkerware tech permits third parties to observe your mobile device without even knowing you and collect all the critical information related to your location and online activity, which can be utilized for extortion or various malicious purposes.

These types of tools can edge to “gender-based and domestic violence, sexual abuse and harassment,” as per the Coalition against Stalkerware.

Blocked After 2018 Data Breach

“Recently, the Federal Trade Commission banned SpyFone and its CEO Scott Zuckerman from the surveillance business over statement that the Stalkerware app company secretly accumulate and transmitted information on user’s physical movements, phone use and online activities via a hidden device hack,” the FTC said today.

“’The company’s application sold real-time access to their secret surveillance, permitting the chaser and domestic abuses to personally track the probable target of their violence. SpyFone’s lack of basic security also reveled device owners to hackers, discover thieves, and other cyber threats.”

Levine suggested a data hijack disclosed in August 2018 impacted by Spyfone remaining an Amazon S3 bucket involving some terabytes of information harvested from more than 3,600 devices, including text messages, photos, audio recordings, and the users’ web history.

The security researcher who founded the revealed database also discovers that Spyfone’s backend services could also be accessed without credentials, making it possible to generate admin accounts and achieve access to customer data.

Eva Galperin, Electronic Frontier Foundation’s director of cybersecurity, told Motherboard, who first revealed the breach that “Spyfone comes to be a magical combination of shady, irresponsible, and incompetent.” While Spyfone guaranteed clients that it would work with law enforcement authorities and an outside data security firm to investigate the breach, the FTC said it failed to follow through.

Alert Stalkerware Victims- “Your Devices are not secure!”  

As part of an expected settlement, the FTC now needs Support king to alert the owners of the particular devices on which its application was installed that their devices were observed and likely no longer protected.

Know-Why-FTC-banned-Stalkerware-maker-Spyfone-from-the-Surveillance-business-featured-image

Spyfone and its CEO Scott Zukerman will also have to delete any information illegally gathered by utilizing the Stalkerware applications. “This case is an essential reminder that surveillance-based businesses pose a significant threat to our safety and security. We will be combative about looking surveillance blocks when companies and their executives’ extreme breach our privacy.”

FTC took Action against Stalkerware once again

The FTC also banned Retina-X Studios (Retina-X) from transferring three stalkerware mobile applications like MobileSpy, PhoneSheriff, and TeenShield unless they were utilized for advantageous purposes in October 2019.

Retina-X stopped transferring its apps in 2018 before the FTC settlement after its cloud storage was hijacked twice using encoded account passwords in February 2017 and with the help of ‘obfuscated’ passwords one year later.

The attacker hijacks information gathered by appropriating the PhoneSheriff and TeenShield applications, “including login usernames, encrypted login passwords, text messages, GPS locations, contacts, and photos.” Before Retina-X stopped selling the three stalking apps, it handled to get customers to pay for 15,000 subscriptions (5,700+ for MobileSpy, 4,600+ for PhoneSheriff, and over 5,000 for TeenShield) in total for all three apps.

FTC is not the only one who took action against Stalkerware. Google modernized its Google Ads allowing fraudulent behavior policy to widely banning advertising for spyware and surveillance technology initiating with August 11, 2020.

Leave a Reply