Hackers intrude into the server and delete 1 TB photos and personal information stored by spyware

byTrent Erwin

In the world there are "spyware" which steals operation contents and screen shots on PCs and smartphones, photos and web browsing history stored in the terminal, search history, mail and chat contents. "I do not like the world where such privacy is not protected," Motherboard reported that a hacker intruded into the server and deleted 1 TB of data that was stored.

A Hacker Has Wiped a Spyware Company's Servers - Again - Motherboard
https://motherboard.vice.com/en_us/article/3k7a5k/hacker-wipes-spyware-retina-x-flexispy


According to Motherboard, the target of attack by hackers is manufacturer "Retina-X" which is developing spyware such as "AceSpy" which monitors the spouse, children, online activities of employees. The hacker was angered that the photos and data acquired from the monitored terminal from the monitored terminal were saved in the state without security very much, and deleted the total 1 TB.

A spokesperson for Retina-X seems to have denied that he has not been hacked or the like, but Motherboard contacts the hacker and is confirming that it is ready to enter the server even after a hacking denial statement by Retina-X .

Actually, this hacker also invaded the server of Retina-X and another company in the same way in 2017, and was acting to delete the information acquired by spyware. The Retina-X spyware for Android "PhoneSheriff" saved the acquired personal information in the container provided by the cloud provider Rackspace, but when the hacker analyzed PhoneSheriff, the API for accessing the container The key and the authentication information were saved in plain text, so it was said that the access was successfully successful.

Although the API key was obfuscated this time, it succeeded to break through again. It seems that I cleaned up the data in the server cleanly.

Spyware that monitors the activity of others of this type is also called "stalker wear", and it is often pointed out that it is related to domestic violence and abuse, and it is said that it is illegal in the United States.

Deleting data by breaking into the server is not an act in accordance with the law, but "I do not want to live in a world where the young generation grows without privacy" I can also understand the feelings of hackers .