Cocospy
Cocospy has been named in 2 documented digital harm incidents. The most common harm domain is Privacy & Surveillance.
Documented Incidents
2Stalkerware apps Cocospy and Spyic data breach exposes 2.65 million user accounts
Security researchers discovered a vulnerability in the stalkerware apps Cocospy and Spyic that allowed anyone to download personal data, including messages, photos, call logs and the email addresses of registered users. By exploiting the flaw, they scraped roughly 1.81 million Cocospy and 880,000 Spyic email addresses (about 2.65 million unique accounts) and shared the list with the Have I Been Pwned service. The apps route traffic through Cloudflare and store data on Amazon Web Services, and the breach is linked to the China‑based developer 711.icu; the operators have not responded to requests for comment and the bug remains unpatched.
SpyX stalkerware data breach exposes nearly 2 million users and Apple iCloud credentials
In June 2024, the consumer‑grade spyware service SpyX suffered a data breach that was disclosed in March 2025, leaking roughly 1.97 million unique records. The leak included about 17,000 plaintext Apple iCloud usernames and passwords, as well as data from clone apps MSafely and SpyPhone, bringing the total compromised accounts to nearly 2 million. Security researcher Troy Hunt verified the breach through Have I Been Pwned, and Google subsequently removed a related Chrome extension. Affected users were urged to change passwords and enable multi‑factor authentication.