While the number of affected victims has been reduced by individuals using multiple devices, the overall impact remains significant. TechCrunch’s findings reveal that a staggering 3.3 million text messages containing sensitive information such as two-factor authentication (2FA) codes and password reset links were compromised. Moreover, 1.2 million call logs with recipients’ phone numbers and 312,000 call recording files were exposed, further amplifying the severity of this breach.
Disturbingly, Spyhide also harvested 925,000 contact lists, 382,000 photos, and 6,000 ambient recordings from victims’ devices. The covert app, downloaded directly from Spyhide’s website instead of the Play Store, evaded Google’s screening, making it harder to hold the tech giant accountable. However, enabling Google Play Protect offers some protection against stalkerware and malware threats.
