Rankiteo Logo
Rankiteo
Leader in Cyber Underwriting
Loading...
NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop
WindowsmacOSLinux
Download
STRUKTURA

STRUKTURA Vendor Cyber Rating & Cyber Score

struktura.io

We invent, develop, launch, promote and maintain multiple B2C SaaS & Mobile Apps.


STRUKTURA A.I CyberSecurity Scoring

STRUKTURA
Company Information
Website:https://struktura.io/
Employees number:104
Number of followers:766
NAICS:5112
Industry Type:Software Development
Homepage:struktura.io
STRUKTURA Risk Score (AI oriented)
Between 600 and 649
logo
STRUKTURASoftware Development
Updated:
12/03/2026
600/1000
Poor
Caa
AaaAaABaaBaBCaaCaC
Powered by our proprietary A.I cyber incident model
Insurance prefers TPRM score to calculate premium
STRUKTURA Global Score (TPRM)
xxxx
logo
STRUKTURASoftware Development
•••
Score locked
Instant access to detailed risk factors
Vulnerabilities
Benchmark vs. industry & size peers
Findings

STRUKTURA
STRUKTURAPoor
Current Score
600Caa (POOR)
01000
2 incidents
-78 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
611Before Incident
JUNE 2026
610Before Incident
MAY 2026
606Before Incident
APRIL 2026
604Before Incident
MARCH 2026
600Before Incident
FEBRUARY 2026
662Before Incident
Breach
09 Feb 2026STRUKTURA
SpyX, uMobix, Cocospy, mSpy, Spyic and Retina-X: Hacked, leaked, exposed: Why you should never use stalkerware apps

Stalkerware Industry Plagued by Repeated Data Breaches, Exposing Victims and Abusers Alike

597After Incident
CRITICAL-65
RETMSPMUKUMO1770688652
Stalkerware Industry Plagued by Repeated Data Breaches, Exposing Victims and Abusers Alike Since 2017, at least 27 stalkerware companies apps marketed to jealous partners for covert surveillance have suffered hacks or major data leaks, exposing sensitive information from both customers and unwitting victims. The latest breach involves uMobix, whose payment data for over 500,000 customers was scraped and published online by a hacktivist targeting the industry’s unethical practices. ### A Pattern of Negligence and Exploitation Stalkerware apps like uMobix, Catwatchful, SpyX, Cocospy, mSpy, and pcTattletale enable illegal surveillance, often marketed as tools to "catch cheating partners." Yet their poor security has repeatedly led to massive data exposures, including: - Messages, photos, call logs, and GPS locations of victims. - Customer payment details, support tickets, and login credentials. - Real-time screenshots and audio recordings from monitored devices. In 2025 alone, Catwatchful, SpyX, Cocospy, Spyic, and Spyzie all suffered breaches, exposing millions of victims’ data. The trend extends back years, with mSpy (2024), Spytech (2024), and pcTattletale (2024) among the most high-profile cases. pcTattletale’s founder, Bryan Fleming, later pled guilty to hacking and unlawful surveillance charges after the company’s shutdown. ### Hacktivists vs. Stalkerware: A Decade of Disruption The first major stalkerware breaches occurred in 2017, when hackers targeted Retina-X and FlexiSpy, exposing 130,000 customers and wiping servers in an effort to dismantle the industry. Despite these attacks, many companies rebranded or persisted FlexiSpy remains active today, while others like Spyhide and TheTruthSpy have been hacked multiple times. Some breaches were accidental, like SpyFone’s 2018 leak of an unsecured Amazon S3 bucket containing texts, photos, and passwords. Others were deliberate acts of sabotage, such as the hacker who defaced pcTattletale’s website and leaked internal data after the app was used to monitor hotel check-in systems. ### Legal and Ethical Fallout While eight stalkerware companies have shut down due to breaches or legal action, others rebrand and resurface. The FTC banned SpyFone and its CEO in 2021 after a data exposure, and New York’s attorney general forced PhoneSpector and Highster to close for promoting illegal surveillance. Security experts, including Eva Galperin of the Electronic Frontier Foundation, note that stalkerware companies are "soft targets" due to their lax security and unethical business models. Even when apps are used "legally" (e.g., parental monitoring), their inherent insecurity puts all users at risk. ### A Declining but Persistent Threat While Malwarebytes reported a decline in stalkerware detections in 2023, experts warn that abusers may be shifting to physical tracking (e.g., AirTags) or harder-to-detect methods. The industry’s history of breaches, rebranding, and legal evasion suggests the problem remains far from resolved.
INCIDENT DETAILS -
TYPE
Data BreachHack
MOTIVATION
Ethical Opposition to StalkerwareSabotageExposure of Unethical Practices
IMPACT
MessagesPhotosCall logsGPS locationsCustomer payment detailsSupport ticketsLogin credentialsReal-time screenshotsAudio recordingsStalkerware ApplicationsCompany DatabasesWebsitesCompany ShutdownsRebrandingBrand Reputation Impact: SevereFTC BansLegal Actions by Attorneys GeneralIdentity Theft Risk: HighPayment Information Risk: High
DATA BREACH
MessagesPhotosCall logsGPS locationsPayment detailsSupport ticketsLogin credentialsReal-time screenshotsAudio recordingsSensitivity Of Data: HighData Exfiltration: YesData Encryption: None or InadequateTextsPhotosAudioScreenshotsPersonally Identifiable Information: Yes
FEBRUARY 2026
753Before Incident
Breach
01 Feb 2026STRUKTURA
Struktura: Huge stalkerware data breach sees 500,000 records leaked by hacktivists

Hacktivist Exposes 536,000 Customer Records from Stalkerware Vendor Struktura

662After Incident
CRITICAL-91
STR1770725180
Hacktivist Exposes 536,000 Customer Records from Stalkerware Vendor Struktura A hacktivist operating under the alias wikkid breached the website of Struktura, a Ukrainian software company linked to consumer spyware services like Geofinder, uMobix, and Peekviewer, earlier this month. Exploiting a "trivial" vulnerability, the attacker extracted 536,000 customer records, including names, email addresses, purchase details, and partial credit card information though payment dates were omitted. The leaked data, verified by TechCrunch through password reset tests and invoice matching, revealed transaction specifics such as payment amounts, card types (Visa/Mastercard), and the last four digits of card numbers. Wikkid publicly posted the archive on a hacking forum, framing the attack as retaliation against apps used for "spying on people." The vendor was identified as Ersten Group, a UK-based software startup. Struktura, which markets its surveillance tools as child or employee monitoring solutions despite their frequent misuse for stalking has not responded to the incident. Consumer spyware, often disguised as legitimate security software, remains a contentious and legally ambiguous industry. The breach underscores ongoing risks associated with such platforms and their handling of sensitive user data.
INCIDENT DETAILS -
TYPE
Data Breach
MOTIVATION
Retaliation against apps used for spying on people
IMPACT
Data Compromised: 536,000 customer recordsSystems Affected: Struktura websiteBrand Reputation Impact: Likely negative impact due to association with stalkerwareIdentity Theft Risk: High (exposed PII and partial payment data)Payment Information Risk: Partial credit card information exposed
DATA BREACH
NamesEmail addressesPurchase detailsPartial credit card informationNumber Of Records Exposed: 536,000Sensitivity Of Data: High (PII and payment data)Data Exfiltration: YesPersonally Identifiable Information: Yes
JANUARY 2026
753Before Incident
DECEMBER 2025
753Before Incident
NOVEMBER 2025
753Before Incident
OCTOBER 2025
753Before Incident
SEPTEMBER 2025
753Before Incident
AUGUST 2025
753Before Incident

Frequently Asked Questions

?
What is the current A.I Rankiteo Cyber Score for STRUKTURA ?
?
What was STRUKTURA's A.I Rankiteo Cyber Score in June 2026 ?
?
What was STRUKTURA's A.I Rankiteo Cyber Score in May 2026 ?
?
What was STRUKTURA's A.I Rankiteo Cyber Score in April 2026 ?
?
What was STRUKTURA's A.I Rankiteo Cyber Score in March 2026 ?
?
What was STRUKTURA's A.I Rankiteo Cyber Score in February 2026 ?
?
What was STRUKTURA's A.I Rankiteo Cyber Score in January 2026 ?
?
What was STRUKTURA's A.I Rankiteo Cyber Score in December 2025 ?
?
What was STRUKTURA's A.I Rankiteo Cyber Score in November 2025 ?
?
What was STRUKTURA's A.I Rankiteo Cyber Score in October 2025 ?
?
What was STRUKTURA's A.I Rankiteo Cyber Score in September 2025 ?
?
What was STRUKTURA's A.I Rankiteo Cyber Score in August 2025 ?
?
What is the average per-incident point impact on STRUKTURA's A.I Rankiteo Cyber Score over the past 12 months ?
?
Where can I access detailed records of all cyber incidents associated with STRUKTURA ?
?
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ?
?
Where can I view STRUKTURA's profile page on Rankiteo ?
?
How accurate is the A.I Rankiteo Risk Scoring methodology ?