> The UK address. 145-157 St John Street, London, EC1V 4PY. According to a BBC report, this is the address used by a company which sells its use as a registered office address. Because there does not seem to be an obligation to check that users of the service are legitimate companies, criminals are attracted to it. According to the BBC, the address is in common use among fake companies operating "boiler room" fake share scams.<p>That is the old address for Companies Made Simple: <a href="http://www.companiesmadesimple.com/" rel="nofollow">http://www.companiesmadesimple.com/</a><p>They handle all kinds of services for tens of thousands of companies in the UK, from registration, to registered address and mail forwarding.<p>I know this, because I used them for my startup to handle the registered address. This is because official mail has to go somewhere and the address is a matter of public record. We were in a co-working space at the time and knew that we would move on when the time came, it's an annoyance to go around updating the registered address and unprofessional to have a co-working space as one.<p>That Companies Made Simple is used by bad actors isn't going to be a surprise, bad actors use nearly all service providers.<p>They are the largest provider of registered address services in the UK, it's not a surprise that the address is in "common use". That ignores the fact that the number of legitimate businesses that use the address vastly outnumber the illegitimate.<p>I dislike Companies Made Simple having used them (they nearly shredded our investors SEIS certs because they didn't regard them as "official government communication"), but it's probably defamation to imply that companies using the address are not legitimate just because some small sample of them are not.
> After the first shock of seeing iCloud passwords stored in clear text(how hard would it be to encrypt them?)<p>Not going to defend shady businesses, but I dislike this knee jerk reaction without understanding the actual issue. I've seen software that encrypts (encrypts, not hashes) passwords for security™, but stores the secret in the database, too. Sure, technically they didn't store plaintext passwords, but practically they did.<p>What you could do to defend the passwords:<p>* hash them - doesn't work in this case, because it's not an authentication system<p>* symmetrically encrypt them - useless, the secret would be stored on the compromised server<p>* asymmetrically encrypt them - works, assuming the private key isn't stored on the server. Therefore, it's not possible to decrypt the passwords from within the application again
> We decided to sneak a peak. Logging in with the “mobiteam@icloud.com” apple ID and the password graciously provided in clear text, we have identified a typical QA team account...<p>This provides the 'break in the case' but it's based on illegal activity. Just because a company is acting unethically doesn't give researchers a legal shield. (Especially considering a quick search led me to the probable identity of the author.)
Great write-up, even though some enthusiastic conclusions are far from solid.<p>>>>> the logo similarity convinced us beyond the shadow of a doubt that Mobisoft LTD is the development company behind mSpy<p>>>>> Why would mSpy move their data from Amazon ... Incidentally, in September 2014, the FBI has arrested a CEO of another spyware company called Stealth Genie ... Could the ease with which the US authorities were able to take down Stealth Genie has caused the Ukrainian company to move to an alternative infrastructure? We believe that the compelling answer to this question is obvious. Yes.
I think what would be interesting is to ask Lenovo why they commissioned Lenovo Browser Guard from a known spyware distributor, Conduit (one of the biggest and for a time nastiest Malware programs was Search Protect, which they make).<p>Proof: here’s a press release from Perion from June 2014 which announced that they partnered with Lenovo to create Browser Guard:<p><a href="http://www.businesswire.com/news/home/20140618005930/en/Perion-Partners-Lenovo-Create-Lenovo-Browser-Guard" rel="nofollow">http://www.businesswire.com/news/home/20140618005930/en/Peri...</a><p>And here is a January 2014 press release that shows that Perion acquired Conduit's ClientConnect Services in 2014<p><a href="http://www.businesswire.com/news/home/20140102005313/en/Perion-Completes-Acquisition-Conduit%E2%80%99s-ClientConnect-Creating-Leading#.VWnShlyqpBd" rel="nofollow">http://www.businesswire.com/news/home/20140102005313/en/Peri...</a>
I liked the style and flow of this piece a lot. I sort of felt like I was left hanging at the end, though. There was no huge reveal or dramatic conclusion, just a bunch of arm waving and strong language.<p>I wonder if rewriting this so that the ending leaves more of a mystery might help the piece. As it is, I got the feeling the author was trying to tell a story that just wasn't there. Great tone and style, though, and worth the read. This new brand of "Nerd Detective Novel" is really cool. Would love to see more of it.
Thanks for the story, it was a nice read. However, the answer is at the beginning: The author of the software is exactly the guy he claims to be. Along with photo and an interview in the <i>Forbes Magazine</i>.<p>Yes, they use all kinds of fake companies for whatever purposes, but there's really no need to entangle it all.
It's great that at least some shady businesses are being exposed. However, the problem is that it's hard to get any public attention on it - they are relatively small, and it's hard to link any actual damage to these shady businesses, and even then, the victims are "spread out", and will find it difficult to litigate.<p>There's no pressure to stop such businesses, unless law enforcement do their thing properly. FBI and other gov't agencies have massive resources, why isn't more put on this sort of thing, instead of spying on the citizens illegally?
Doesn't logging into an email account with stolen credentials, even a "QA team account" cross a line?<p>I understand that spyware makers are not good people, but that doesn't obviate the laws against this sort of thing.
I think the name Pat Baitman is a reference to Patrick Bateman <a href="http://en.m.wikipedia.org/wiki/Patrick_Bateman" rel="nofollow">http://en.m.wikipedia.org/wiki/Patrick_Bateman</a>
> > After the first shock of seeing iCloud passwords stored in clear text(how hard would it be to encrypt them?), we have seen something very interesting in the file:<p>I don't understand why that particular developer account caught their eye while browsing through a 13GB data set.
So this outfit, mSpy, sold to people the capability to track activities on one (1) other person's smartphone: Less than a nanogoogle! Why the outrage?