At that point, the hacker said, they requested the user credentials by sending the ID to the company servers with a web request that returned usernames and passwords in plaintext. With a script to automate that process, L.M. said he harvested all the customers’ credentials.

motherboard.vice.com/en_us/article/mb4y5x/thetruthspy-spyware-domestic-abusers-hacked-data-breach