1. Website Planet
  2. >
  3. News
  4. >
  5. Catwatchful Spyware Breached Revealing Thousands of Records
Catwatchful Spyware Breached Revealing Thousands of Records

Catwatchful Spyware Breached Revealing Thousands of Records

Headshot of Andrés Gánem Written by: Andrés Gánem
Headshot of Maggy Di Costanzo Reviewed by: Maggy Di Costanzo
Last updated: July 18, 2025
A cybersecurity researcher has uncovered a major breach in the Android spyware app “Catwatchful, exposing around 62,000 customers, including the app administrator, according to a July 2 blog post.

The exposed database revealed at least 26,000 victims of the operation, with the total number potentially being higher.

The researcher, Eric Daigle, discovered and exploited a vulnerability in the app, which falls into a category known as consumer-grade spyware, also referred to as stalkerware. These apps are often marketed for tracking spouses or partners and operate by secretly harvesting data from a victim’s phone without their knowledge.

Though stalkerware apps exist on a legal gray market, monitoring someone else’s data without their explicit consent is illegal worldwide.

According to Daigle, the app stands out among other stalkerware apps for its functionality. “The app works really well. A lot of stalkerware apps are half-broken, clearly built by gluing together various chunks of spaghetti code long abandoned by their original authors. Not so here – all these features work as advertised with minimal latency,” Daigle writes in his blog post.

Daigle goes on to explain that Catwatchful offers “particularly creepy” features such as live access to a device’s camera and microphone, allowing the user to take photos, videos, and audio recordings without alerting the victim in any way.

Stalkerware apps are often as dangerous for their customers as they are for the people they’re used on. This year has seen several high-profile cases of breaches into stalkerware apps that exposed key customer data. In March, a breach into two of the biggest stalkerware apps on the market, Cocospy and Spyic, exposed the information of millions of customers and victims alike.

According to tech news site TechCrunch, most of the compromised devices were located in Mexico, Colombia, India, Peru, Argentina, Ecuador, and Bolivia (in order of the number of victims), with records going as far back as 2018.

The leaked database also revealed the identity of the operation’s administrator, Uruguay-based developer Omar Soca Charcov. A copy of the compromised database has been shared with Have I Been Pwned, allowing individuals to check whether their personal information was included in the leak.

Spyware has also been used on a government-wide level to spy on political dissidents, journalists, and activists. Recently, the Citizen Lab research group confirmed the use of Paragon spyware on European journalists.

Andrés Gánem
Senior Writer:
Andrés Gánem
Andrés writes about a variety of topics aimed at helping business owners and merchants grow and manage their ventures. These topics include (but are not limited to) website building, web hosting, project management software, and credit card processing. Andrés has 3+ years of experience as a writer and content creator. He’s also worked as a project manager, website designer, and social media manager for a variety of science communication groups.

Maggy Di Costanzo
Editor:
Maggy Di Costanzo
Maggy Di Costanzo is an editor at Website Planet, specializing in reviews of e-commerce platforms, website builders, and web hosting services. With experience as a freelance AI content specialist, editor, and writer, she brings a versatile skill set from industries like marketing and real estate. When she’s not editing or staying updated on SEO trends, Maggy enjoys going on hikes with her dog, planning dinner parties, and tracking the stock market.

Follow our experts on
Rate this Article
5.0 Voted by 3 users
You already voted! Undo
This field is required Maximal length of comment is equal 80000 chars Minimal length of comment is equal 10 chars
Any comments?
Reply
View %s replies
View %s reply
More news
Show more
Reply to
0 out of minimum 50 characters
Complete your reply Complete your comment
The name is too short The name is too long The name contains invalid characters
The email is required The email is incorrect
Thank you, - your comment was submitted successfully!
We check all user comments within 48 hours to make sure they are from real people like you. We're glad you found this article useful - we would appreciate it if you let more people know about it.
Popup final window
Share this blog post with friends and co-workers right now:
1 1 1
Thank you, , your comment was submitted successfully!

We check all comments within 48 hours to make sure they're from real users like you. In the meantime, you can share your comment with others to let more people know what you think.

Thank you for signing up!

Once a month you will receive interesting, insightful tips, tricks, and advice to improve your website performance and reach your digital marketing goals!

1 1 1

So happy you liked it!

Share it with your friends!

1 < 1 1

Or review us on 1

3695200
50
5000
143202263