Stalkerware Database Exposes 86,000 Files on EU Influencers

Researcher Uncovers Massive Stalkerware Database Targeting Public Figures

Cybersecurity researcher Jeremiah Fowler recently discovered an unprotected database containing more than 86,000 images and private chat logs harvested through stalkerware. The data was not encrypted, not password-protected, and entirely exposed to anyone who knew where to look. Most alarming: the victims were not random. The database specifically targeted a high-profile European celebrity and multiple social media influencers, suggesting the deployment of commercial spyware was deliberate and focused.

The exposed records included private communications pulled directly from WhatsApp and Instagram, phone numbers, and photographs of identity documents. This is not a standard data breach where credentials leak from a poorly secured server. This is surveillance-as-a-service turned against real people, with intimate details of their lives sitting in an open database.

What Is Stalkerware and Why Is It Different from Other Threats

Stalkerware refers to software installed covertly on a device, typically a smartphone, that silently monitors and transmits private activity to a third party. Unlike phishing attacks or malware that targets your passwords, stalkerware operates from inside your device, after it has been physically accessed by someone who installs the software without your knowledge.

This distinction matters enormously for how you protect yourself. Stalkerware bypasses most of the defenses people rely on. It does not need to intercept your internet traffic. It reads your messages before they are encrypted and sent. It captures images stored locally. It harvests contacts and call logs. By the time your data leaves your phone, the surveillance has already happened.

Commercial spyware products are widely available, often marketed under the guise of parental monitoring or employee tracking tools. The legal and ethical lines around their use are blurry, which makes them difficult to regulate. And as this investigation shows, the operators of these tools do not always secure the data they collect, creating a second layer of exposure for victims who may not even know they are being watched.

Why a VPN Alone Cannot Protect You from Stalkerware

A VPN is a powerful tool for protecting your internet traffic from surveillance, especially on public networks or from your internet service provider. It encrypts the connection between your device and the internet, masking your activity from outside observers. But a VPN has no visibility into what is happening on your device itself.

If stalkerware is already installed on your phone, a VPN cannot stop it. The spyware reads your WhatsApp messages from the app directly, not from the network. It accesses your photo library without touching your internet connection. It operates at the device level, beneath the layer where a VPN provides any protection at all.

This does not make VPNs irrelevant. They remain an important part of a layered privacy strategy. But they are one tool among many, and treating them as a complete solution leaves significant gaps that cases like this one illustrate clearly.

What This Means For You

The victims in this case were public figures, but the threat is not exclusive to celebrities or influencers. Anyone whose device is accessed by a partner, family member, employer, or acquaintance could be at risk. The fact that the harvested data was left in an unsecured database means it was also exposed to anyone beyond the original operator, compounding the harm.

Here are concrete steps you can take to reduce your exposure to stalkerware and commercial spyware:

• Audit your installed apps regularly. Review every app on your phone periodically, including apps you did not install yourself. Stalkerware sometimes disguises itself with generic names. Delete anything unfamiliar.
• Check device permissions. On both Android and iOS, you can see which apps have access to your camera, microphone, location, and messages. Revoke permissions that do not make sense for an app's stated purpose.
• Use a security scanner. Several mobile security tools specifically detect stalkerware. The Coalition Against Stalkerware maintains a list of vetted resources.
• Enable two-factor authentication. While this does not stop device-level spyware, it limits what someone can do with your credentials if they harvest them.
• Secure physical access to your device. Stalkerware almost always requires brief physical access to install. Use a strong PIN or biometric lock, and never leave your phone unattended with people you do not fully trust.
• Keep your operating system updated. Updates frequently patch vulnerabilities that stalkerware and other malicious software exploit.
• Consider a factory reset if you suspect compromise. This is an extreme step, but if you have reason to believe stalkerware is present and you cannot identify it, a full reset is the most reliable way to remove it.

The Fowler investigation is a reminder that privacy threats come from multiple directions, not just from hackers targeting your accounts online. Protecting yourself requires thinking about who has access to your physical devices, not just who can intercept your network traffic.

If you are concerned about stalkerware on your device, start with a full app audit today. The tools to protect yourself exist; the key is knowing which threats you are actually defending against.