How stalkerware can threaten your safety and privacy, and how to avoid it - TechRepublic

How stalkerware can threaten your safety and privacy, and how to avoid it - TechRepublic

How stalkerware can threaten your safety and privacy, and how to avoid it - TechRepublic

Posted: 26 Feb 2021 09:56 AM PST

With a stalkerware app on your phone, another person can spy on your activities and view your personal information, Kaspersky says.

woman afraid with phone

Image: istock/Highwaystarz-Photography

At its best, technology can bring people together through the use of social networks, video chats, and other tools. But at its worst, technology can be used to harass, bully, and terrorize other people. One example of the latter is stalkerware, a type of app installed on someone's mobile device to eavesdrop on them. A report released Friday by Kaspersky explains how stalkerware works and how you can protect yourself against it.

SEE: Top Android security tips (free PDF) (TechRepublic)  

More about Mobility

Commercially available to anyone with internet access, stalkerware typically is set up on someone's mobile phone without their knowledge or permission. Once installed, the app operates in stealth mode, so the user is unaware of its presence.

As defined by Kaspersky, stalkerware can't be installed remotely through malware or other means. The culprit must have physical access to the phone. Unless the phone has been lost or stolen, that means the abuser typically knows the victim, as in the case of a spouse, significant other, or close contact.

Installing the stalkerware app usually requires only a few minutes. The phone itself must either be unlocked or unprotected by a PIN, password, or other security. However, someone who has already shared their security method with an abusive spouse or significant other can also allow for the intrusive app to be installed.

Depending on the type of stalkerware in place, the abuser can perform any or all of the following activities:

  • Read anything the victim types by logging each keystroke. This can include account credentials to banking apps, online shops, and social networks
  • Know the location of the victim by tracking their movements via GPS
  • Hear what the victim says by eavesdropping on or even recording their phone calls
  • Read any type of message, even those that are encrypted
  • Monitor social network activity
  • See photos and videos
  • Switch on the camera

Based on Kaspersky's research, 53,870 users of its mobile security app were affected globally by stalkerware in 2020. Including people who don't use Kaspersky's software, the full number is certainly much higher.

Using stalkerware against women is an especially pervasive issue and can lead to violence on the part of the stalker. Seven in 10 women in Europe who experienced cyberstalking also faced at least one form of physical and/or sexual violence from an intimate partner, according to a 2017 report from the European Institute for Gender Equality. Cyberstalking itself is a form of violence as an abuser can use the surveillance to control their victim.

SEE: How to manage passwords: Best practices and security tips (free PDF) (TechRepublic)

"We now understand that stalkerware is not purely a technical problem," Kristina Shingareva, head of external relations at Kaspersky, said in a press release. "It's not the IT part of the issue that is challenging, but the fact that we need to deal with the commercial availability of stalkerware, the lack of regulation around how it is being used and, perhaps the most difficult problem, the fact that violence against women and different forms of online abuse have been normalized."

Given the shady nature of stalkerware, the apps typically have to be downloaded from an unofficial source, such as the developer's webpage. The stalkerware family known as Nidb was the most popular stalkerware sample in 2020, according to Kaspersky. Nidb was used to sell a number of different stalkerware products such as iSpyoo, TheTruthSpy, and Copy9, the report said.

For Android, Google banned stalkerware apps from its Google Play store last year. Stalkerware tools are less frequent on iOS than on Android because of the closed nature of Apple's ecosystem. But an abuser can install such an app on a jailbroken iPhone. In other cases, an abuser could give their victim a mobile phone as a gift with the stalkerware already installed.

Stalkerware apps often skirt legal issues by pretended to be child monitoring or employee tracking tools. In the past, users would run afoul of the law only if they used such apps to record user activity without their permission. But the laws are slowly changing, at least in certain countries. In France, secretly spying on someone this way without their consent can be punished with up to one year in jail and a fine of €45,000. In the United States, one developer of a stalking app was fined $500,000, while another eluded any penalty after promising to change the app's functionality.

SEE: Android 12: A cheat sheet (TechRepublic)

With stalkerware able to run on your phone without your knowledge, Kaspersky offers a few ways to tell if such an app has been installed:

  1. Keep an eye out for a fast draining battery, constant overheating, and mobile data traffic growth.
  2. Do regular antivirus scanning on your Android device. If your security product detects stalkerware, don't rush to remove it, as the abuser may notice. Have a safety plan in place and reach out to a local help organization.
  3. Check your browser history. To download stalkerware, the abuser will have to visit certain sites that you may not know about.
  4. Check "unknown sources" settings. If "unknown sources" are enabled on your device, that could indicate the installation of unwanted software from a third-party source.
  5. Check the permissions of installed apps. Stalkerware apps may be disguised under a wrong name with suspicious access to messages, call logs, location, and other personal activity.

Finally, here are a few ways to protect your phone against the installation of stalkerware:

  1. Never lend your phone to anyone without seeing what happens with it and do not leave it unlocked.
  2. Use a complex lock screen password and change passwords on a regular basis.
  3. Do not disclose your password to anyone, not even your intimate partner or family members or close friends.
  4. Regularly check your phone. Delete apps you don't use and review the permissions granted to each app.
  5. Disable the option for third-party apps to be installed on Android devices.
  6. Protect your Android devices with a cybersecurity solution that detects and warns you of stalkerware.

Also see

Big Brother Is Watching You Online. But a VPN Can Help Block His View. - Futurism

Posted: 27 Feb 2021 06:06 AM PST

Ever since its inception, the Internet has been growing exponentially. However, with a plethora of content comes a plethora of threats. Large-scale hacker attacks, identity thefts, DDoS attacks, and other serious crimes have become all too common. However, so have tools for staying safe online. One of the most popular methods of protecting your connection is a VPN. And rightfully so. Not only do they reduce your risk of becoming a victim of cybercrime, but they also allow you to stay anonymous and bypass regional content restrictions. And when it comes to VPNs, NordVPN is the best in the business.

NordVPN

A VPN (Virtual Private Network) is essentially a service that protects your Internet connection and privacy online. Imagine it as a tunnel between you and other websites. That tunnel secures your data, which would otherwise be susceptible to theft or other misuses.

Though some people initially dismissed VPNs as too complex, many providers have greatly simplified their services while maintaining their security. One such company is NordVPN. Starting as a childhood friends project in 2012, NordVPN has become a VPN giant, owning over 5400 servers in 59 countries. Today, NordVPN serves over 14-million users. And in 2019, NordVPN was a founding member of VTI (VPN Trust Initiative), which is a team of leading VPN providers focused on improving digital safety for consumers.

NordVPN

So, how does NordVPN make the surfing experience better for you? First of all, NordVPN secures your data using the AES 256-bit encryption system. The system is recommended by the NSA for securing classified information. It has also become a staple in today's cryptography, and is used worldwide by governments, cybersecurity experts, and various companies. However, you don't need to understand the sheer complexity of encryption. NordVPN can be downloaded as an app, and only takes a click to encrypt your data.

Advertisement

Apart from protecting your data, NordVPN makes your browsing considerably faster by bypassing ISP throttling. As various ISP's tend to intentionally slow down your internet connection for various reasons, NordVPN bypasses this, allowing you to browse at the maximum possible speed. This means that you will be able to watch your favorite shows and browse your favorite content without having to think about the terrible connection.

With the subscription to NordVPN, you can access over 5,500 servers on up to 6 devices simultaneously. Want to see blocked pages in your country? NordVPN has you covered. It offers servers in countries like Estonia, Georgia, Taiwan, Japan, and South Africa so you can bypass restrictions and browse the Internet without any limits, obstructions, or borders. NordVPN can be accessed from your mobile device, tablet, or laptop, while the app is readily available on Android, Apple Store, and Windows Store. NordVPN also covers you from possible malware or adware.

Although some VPNs were notorious for selling their customers' data to third parties for advertising purposes, NordVPN has a strict no-logs policy, meaning that your private data stays secure anyplace, anytime. But don't take their word for it. Along with 14-million users, some of the world's most famous YouTubers, including PewDiePie, Philip DeFranco, and Casey Neistat use NordVPN.

NordVPN is celebrating its 9th birthday this year, which is why they currently offer 68% off their 2-year plan, which comes to only $3.61 a month. At that price, why wait? Get started with NordVPN now.

Advertisement

Futurism fans: To create this content, a non-editorial team worked with an affiliate partner. We may collect a small commission on items purchased through this page. This post does not necessarily reflect the views or the endorsement of the Futurism.com editorial staff.

Share This Article
-

Comments

Post a Comment

Popular Posts

Signal, WhatsApp and Telegram: All the major security differences between messaging apps - CNET

Image
Signal, WhatsApp and Telegram: All the major security differences between messaging apps - CNET Signal, WhatsApp and Telegram: All the major security differences between messaging apps - CNET Posted: 19 Feb 2021 04:00 AM PST Brent Lewin/Bloomberg/Getty Images If your choice of encrypted messaging app is a toss-up between Signal , Telegram and WhatsApp , do not waste your time with anything but Signal. This isn't about which has cuter features, more bells and whistles or is most convenient to use -- this is about pure privacy . If that's what you're after, nothing beats Signal. By now you probably already know what happened. On Jan. 7, in a tweet heard 'round the world, tech mogul Elon Musk continued his feud with Facebook by advocating people drop its WhatsApp messenger and use Signal instead. Twitter CEO Jack Dorsey retweeted his call. Around the same time, right-wing social network Parler went dark following the Capito
Read more

VPN browser extensions: Why you shouldn't use then - Tech Advisor

VPN browser extensions: Why you shouldn't use then - Tech Advisor VPN browser extensions: Why you shouldn't use then - Tech Advisor Google Fi calls between Android subscribers will soon be end-to-end encrypted - 9to5Google How to encrypt your computer (and why you should) - Mashable How to encrypt and decrypt a folder on Android with SSE Universal Encryption - TechRepublic 4 ways to send encrypted messages on Android - TechRepublic WhatsApp “end-to-end encrypted” messages aren’t that private after all - Ars Technica ciphertext feedback (CFB) - TechTarget What Is the Windows Encrypting File System (EFS) and How Do You Enable or Disable It? - MUO - MakeUseOf Encrypting your online life is important - Telangana Today Keeper Password Manager Review – Forbes Advisor - Forbes [Update: Screenshot] Google Messages preparing end-to-end encryption for RCS messages - 9to5Google The iOS 15 priva
Read more

Police Target Criminal Users of Sky ECC Cryptophone Service - BankInfoSecurity.com

Image
Police Target Criminal Users of Sky ECC Cryptophone Service - BankInfoSecurity.com Police Target Criminal Users of Sky ECC Cryptophone Service - BankInfoSecurity.com Posted: 11 Mar 2021 12:00 AM PST Cybercrime , Encryption & Key Management , Endpoint Security Investigators Report Recently 'Unlocking' 170,000 Users' 3 Million Daily Messages Mathew J. Schwartz ( euroinfosec ) • March 11, 2021     Source: Sky ECC website Police say they have disrupted Sky ECC, a global encrypted communications network allegedly used by numerous criminals to plan their operations. See Also: Live Webinar | The Role of Passwords in the Hybrid Workforce Law enforcement authorities say Sky's cryptophone service, which includes both infrastructure and apps, is run from the United States and Canada, using infrastructure and private servers based in Europe as well as the service's own SIM cards. Sky ECC devices are available via vari
Read more