Convicted Spyware Maker Bryan Fleming Avoids Jail At Sentencing

The first convicted spyware shaper successful complete a decade has avoided jailhouse clip aft earlier pleading blameworthy to U.S. national charges associated pinch moving his surveillance company.

Bryan Fleming was sentenced connected Friday successful a San Diego national tribunal to clip served and a $5,000 fine, confirmed a spokesperson for nan U.S. Attorney for nan Southern District of California, whose agency brought nan charges against Fleming.

During a plea proceeding successful January pursuing a years-long national investigation into his spyware company, pcTattletale, Fleming admitted to making, selling, and advertizing spyware for unlawful uses.

Prosecutors had antecedently asked nan judge for Fleming to person nary custodial condemnation aliases fine.

Image Credits:YouTube (screenshot)

Fleming’s criminal condemnation marks nan first successful prosecution of a spyware shaper by nan U.S. Department of Justice since 2014, perchance opening nan doorway to early prosecutions against others pinch forbidden surveillance operations. 

Fleming’s attorney, Marcus Bourassa, did not respond to a petition for remark erstwhile contacted by TechCrunch.

Investigators pinch Homeland Security Investigations (HSI), a portion wrong U.S. Immigration and Customs Enforcement, brought charges against Fleming successful 2025 arsenic portion of a wider probe into the consumer-grade spyware industry. While galore spyware operators tally their businesses from overseas, investigators told TechCrunch that Fleming drew nan attraction of national agents arsenic he sold and facilitated nan usage of spyware from nan United States, and was personification wrong nan jurisdictional scope of U.S. rule enforcement.

Spyware apps for illustration pcTattletale are referred to arsenic “stalkerware,” arsenic paying customers often works surveillance package connected nan devices of personification other without their knowledge aliases consent, specified arsenic their spouse. Once planted, these apps stealthily upload nan contents of a victim’s device, including their messages, photos, and real-time location, and make nan information viewable to nan personification who planted nan spyware.

According to an affidavit revenge by national investigators who sought to hunt his house, Fleming, successful immoderate cases, “knowingly assisted customers seeking to spy connected nonconsenting, non-employee adults.” 

It’s not known really galore group pcTattletale spied on, but a information breach successful 2024 revealed immoderate of nan standard of nan long-running operation.

According to an earlier investigation by TechCrunch, a information interrogator discovered that pcTattletale had a information flaw that was exposing millions of surface captures, taken by nan spyware from nan victim’s instrumentality each fewer seconds, to nan unfastened internet, which allowed anyone to spot nan contents of different people’s machine displays. This included screenshots of check-in computers astatine respective U.S. hotels that had pcTattletale installed, which exposed edifice impermanent and preservation details. 

Fleming did not respond to nan interrogator nor hole nan information flaw. 

A week pursuing our report, Fleming shut down pcTattletale successful 2024 aft a high-profile hack, website defacement, and information breach, which revealed that much than 138,000 customers had paid nan institution to thief spy connected countless victims.

The hacker told TechCrunch that they exploited a different information flaw, allowing entree to each of nan files stored successful pcTattletale’s unreality information retention account, including those of nan victims.

It’s not clear precisely really galore group had their devices compromised by pcTattletale, and Fleming did not notify his customers aliases their victims of nan information breach. The pcTattletale laminitis told TechCrunch astatine nan clip that he “deleted everything” from his company’s servers pursuing nan breach. 

pcTattletale is 1 of several makers of stalkerware that person unopen down aliases forced offline pursuing a information lapse, including LetMeSpy, Cocospy, and Spyhide.