TheTruthSpy, a consumer-grade spyware or "stalkerware" application, reportedly continues to pose a significant threat to the security and privacy of thousands of individuals whose Android devices have been compromised. These types of apps, which are hidden and not detectable on the device once installed, are usually placed on devices by someone who knows the passcode. The app can then collect masses of data to monitor the user. Not only does the application itself raise privacy concerns, but victims' phone data stored on TheTruthSpy’s server is vulnerable due to a bug that has yet to be fixed. According to Techcrunch, "The bug is particularly damaging because it is extremely easy to exploit, and grants unfettered remote access to all of the data collected from a victim’s Android device, including their text messages, photos, call recordings and precise real-time location data."

To assist potential victims, TechCrunch has updated its spyware lookup tool with approximately 50,000 new Android device identifiers, allowing users to check if their devices have been compromised and providing guidance on removing TheTruthSpy if necessary.

Spyware like TheTruthSpy not only undermines individual privacy but also can have serious affects on other rights. The clandestine surveillance facilitated by such applications can lead to violations of freedom of expression, impact the device user's physical safety and risk the safety of everyone within their network. Moreover, the disproportionate use of stalkerware in domestic abuse situations underscores its potential to exacerbate gender-based violence and perpetuate cycles of abuse.

The Business & Human Rights Resource Centre invited 1Byte Solutions to respond to concerns about TheTruthSpy but the company did not respond.