What is known is that ApexSMS, the name of the database on the exposed server, spammed millions of cell phone numbers with varying messages, all pushing their victims to dozens of different scam sites.Īn example of the kinds of spam SMS messages sent (Image: TechCrunch)ĪpexSMS relies on Mobile Drip, a “high-volume SMS” messaging and marketing platform. Its website today is simply a login page, but for a time simply said, “nothing to see here.” Little is known about Apex - it’s not known if it’s a legitimate company or not. The database is run by an outfit called ApexSMS. “This incident raises the issue once again that data security can affect legitimate businesses and what many would consider ‘gray marketing’ at best,” said Diachenko.
TEXT SPAMMER SUBSCRIPTION OFFLINE
By coincidence, the server was pulled offline before we could reach out, but we still had time to look at the inner workings of the SMS spam operation.Īnd we knew exactly whom to contact - because the spam operators’ email addresses were listed as “admins” in the database. He shared a portion of the data with TechCrunch. Security researcher Bob Diachenko found the spam-sending database on an exposed server last month.