stalkerware apps Archives - CISO MAG | Cyber Security Magazine

Notice: Function _load_textdomain_just_in_time was called incorrectly. Translation loading for the accelerated-mobile-pages domain was triggered too early. This is usually an indicator for some code in the plugin or theme running too early. Translations should be loaded at the init action or later. Please see Debugging in WordPress for more information. (This message was added in version 6.7.0.) in /www/cisomagcom_810/public/wp-includes/functions.php on line 6121

Deprecated: Optional parameter $options declared before required parameter $ad is implicitly treated as a required parameter in /www/cisomagcom_810/public/wp-content/plugins/advanced-ads/classes/display-conditions.php on line 208

Notice: Function _load_textdomain_just_in_time was called incorrectly. Translation loading for the easy-digital-downloads domain was triggered too early. This is usually an indicator for some code in the plugin or theme running too early. Translations should be loaded at the init action or later. Please see Debugging in WordPress for more information. (This message was added in version 6.7.0.) in /www/cisomagcom_810/public/wp-includes/functions.php on line 6121

Notice: Function _load_textdomain_just_in_time was called incorrectly. Translation loading for the edd_cfm domain was triggered too early. This is usually an indicator for some code in the plugin or theme running too early. Translations should be loaded at the init action or later. Please see Debugging in WordPress for more information. (This message was added in version 6.7.0.) in /www/cisomagcom_810/public/wp-includes/functions.php on line 6121

Notice: Function _load_textdomain_just_in_time was called incorrectly. Translation loading for the edds domain was triggered too early. This is usually an indicator for some code in the plugin or theme running too early. Translations should be loaded at the init action or later. Please see Debugging in WordPress for more information. (This message was added in version 6.7.0.) in /www/cisomagcom_810/public/wp-includes/functions.php on line 6121

Notice: Function _load_textdomain_just_in_time was called incorrectly. Translation loading for the edd-recurring domain was triggered too early. This is usually an indicator for some code in the plugin or theme running too early. Translations should be loaded at the init action or later. Please see Debugging in WordPress for more information. (This message was added in version 6.7.0.) in /www/cisomagcom_810/public/wp-includes/functions.php on line 6121

Deprecated: Optional parameter $params declared before required parameter $secretWord is implicitly treated as a required parameter in /www/cisomagcom_810/public/wp-content/plugins/edd-2checkout/sdk/lib/Twocheckout/TwocheckoutReturn.php on line 6

Deprecated: Optional parameter $insMessage declared before required parameter $secretWord is implicitly treated as a required parameter in /www/cisomagcom_810/public/wp-content/plugins/edd-2checkout/sdk/lib/Twocheckout/TwocheckoutNotification.php on line 6

Notice: Function _load_textdomain_just_in_time was called incorrectly. Translation loading for the edd-recurring domain was triggered too early. This is usually an indicator for some code in the plugin or theme running too early. Translations should be loaded at the init action or later. Please see Debugging in WordPress for more information. (This message was added in version 6.7.0.) in /www/cisomagcom_810/public/wp-includes/functions.php on line 6121

Notice: Function _load_textdomain_just_in_time was called incorrectly. Translation loading for the Newsmag domain was triggered too early. This is usually an indicator for some code in the plugin or theme running too early. Translations should be loaded at the init action or later. Please see Debugging in WordPress for more information. (This message was added in version 6.7.0.) in /www/cisomagcom_810/public/wp-includes/functions.php on line 6121

Warning: Cannot modify header information - headers already sent by (output started at /www/cisomagcom_810/public/wp-includes/functions.php:6121) in /www/cisomagcom_810/public/wp-content/themes/Newsmag/functions.php on line 616

Warning: Cannot modify header information - headers already sent by (output started at /www/cisomagcom_810/public/wp-includes/functions.php:6121) in /www/cisomagcom_810/public/wp-includes/feed-rss2.php on line 8
stalkerware apps Archives - CISO MAG | Cyber Security Magazine Beyond Cyber Security Tue, 01 Feb 2022 12:01:06 +0000 en-US hourly 1 https://wordpress.org/?v=6.8.1 How to Know if You’re Being Stalked by Stalkerware https://staging-cisomagcom.kinsta.cloud/explainers-how-to-know-if-youre-being-stalked-by-stalkerware/ Mon, 15 Mar 2021 16:38:43 +0000 https://staging-cisomagcom.kinsta.cloud/?p=10732 At a time when everyone is more connected than ever, cybercriminals too have become more active looking for ways to turn an adverse situation to their advantage. Since the beginning of the pandemic, threat actors have been leveraging innovative techniques to stalk their targets. A recent analysis revealed a 51% increase in the use of spying […]

The post How to Know if You’re Being Stalked by Stalkerware appeared first on CISO MAG | Cyber Security Magazine.

]]> At a time when everyone is more connected than ever, cybercriminals too have become more active looking for ways to turn an adverse situation to their advantage. Since the beginning of the pandemic, threat actors have been leveraging innovative techniques to stalk their targets. A recent analysis revealed a 51% increase in the use of spying and stalking apps globally since the lockdown started.

By *Rudra Srinivas, Senior Feature Writer, CISO MAG***

What is Stalkerware?

Whether it is a malicious actor, suspicious partner, or a spying employer, the use of Spyware and Stalkerware apps has significantly increased in recent times. Such apps serve as powerful surveillance tools capable of working in stealth mode. Stalkerware has the ability to spy on users’ online activities like tracking their location; accessing their personal data, communications from WhatsApp and Facebook; eavesdropping on phone calls; and making covert recordings of conversations without the target’s knowledge. Stalkerware often runs under disguise and requires disabling anti-viruses or the built-in protection in the operating system.

The Rise of Stalkerware

According to a Unwitting users targeted by full-throttle spyware detected as TrojanSpy reached 26,620 in the first eight months of 2019. It is found that Russia (23.4%), Brazil (9.4%), India (9%), and the U.S. (5.6%) are the most prominent regions for Stalkerware. While in Europe – Germany (3.1%), Italy (2.4%) and France (1.8%) are the top three affected places.

How is Stalkerware installed?

Usually, attackers use social engineering techniques like phishing emails/malicious attachments to lure unwitting users into downloading Stalkerware on their devices. Sometimes, users may unknowingly download Spyware that comes bundled with other software from unsecured third-party sources.

Once installed, the Stalkerware leverages the permissions of other apps in the victim’s device to get control over the device. With this accessibility, a hacker can compromise device data, make phone calls, get SIM serial numbers, obtain contact details, read and send text messages, record calls/audio, query call logs, and access device location and ID.

How to know if someone is stalking you?

Stalkerware apps are designed to be hidden, making them difficult to detect. Users need to be more vigilant about their device behaviors to find out whether they are a victim of Stalkerware. Usually, Stalkerware requires permissions from the victim’s phone to collect and send information to the attackers. You can suspect that a Stalkerware/Spyware is installed on your device when:

Your mobile data usage increases drastically
Your phone’s battery drains faster than usual
If your device turns on Wi-Fi or mobile internet even though you turned them off
If location and Bluetooth options are turned on automatically
When you spot unusual notifications on your device
When certain app permissions enable/disable without your consent
If you find any login activities on social media, bank apps, or other accounts without your knowledge

How to protect against Spyware/Stalkerware?

Cybercriminals often rely on Spyware apps to compromise the sensitive information of victims. Users and organizations must enhance their mobile application security to defend against evolving threats from Stalkerware. The end-users must also follow certain security precautions while installing and using mobile apps. These include:

Check the URL protocol (HTTPS) for secure communication.
Never install apps from unknown sites, as they might be malicious. Always download original applications from trusted sources (Google Play Store or Apple Store).
Secure your mobiles against all unauthorized physical and online access.
Install a paid antivirus and a mobile security app to scan for malware and viruses.
Always check the app’s permission list (both Android and iOS) before downloading an app. Restrict or deny access to functions that are not needed for the app to work.
Avoid downloading an app if it is asking for permissions unrelated to its functionality.

Conclusion

Despite multiple security checks, Spyware/Stalkerware apps are making their way into victims’ mobile devices, evading and breaching security, and allowing cybercriminals to pilfer sensitive information. It is users’ responsibility to maintain robust cyber hygiene to protect their devices from such evolving threats.

Related Story: How to Spot Malicious or Fake Apps

About the Author

Rudra Srinivas is a Feature Writer and part of the editorial team at CISO MAG. He writes news and feature stories on cybersecurity trends.

The post How to Know if You’re Being Stalked by Stalkerware appeared first on CISO MAG | Cyber Security Magazine.

]]> Stalk or Spy? Global Use of Stalkerware Apps Rise Amid COVID-19 Lockdown https://staging-cisomagcom.kinsta.cloud/stalkerware-apps/ Wed, 22 Jul 2020 08:49:05 +0000 https://staging-cisomagcom.kinsta.cloud/?p=6443 COVID-19 has not only impacted global physical health, but also cyber health. The constant fixation on the Internet is indicative of the stalking behavior, and how perpetrators are using malicious online tactics to harass their targets. Digital security solutions provider Avast reported a 51% increase in the use of spying and stalking apps globally since […]

The post Stalk or Spy? Global Use of Stalkerware Apps Rise Amid COVID-19 Lockdown appeared first on CISO MAG | Cyber Security Magazine.

]]> COVID-19 has not only impacted global physical health, but also cyber health. The constant fixation on the Internet is indicative of the stalking behavior, and how perpetrators are using malicious online tactics to harass their targets. Digital security solutions provider Avast reported a 51% increase in the use of spying and stalking apps globally since the lockdown in March until June 2020, compared to January and February 2020.

India witnessed a 20% increase in the use of spyware and stalkerware apps. Stalkerware is a software designed in stealth mode, which allows people to spy on someone’s online activities like tracking their location, access their personal data, communications from WhatsApp and Facebook, eavesdrop on phone calls and make covert recordings of conversations without the target’s knowledge.

Avast has protected over 43,000 users across the globe from such malware since March 2020, with 3,531 users targeted in the U.S., 3,332 in India, and 3,048 in Brazil.

Avast researchers discovered three stalkerware apps in India, which are named after the Aarogya Setu app, India’s official COVID-19 app. If downloaded, the stalkerware installs along with the app and uses the original app permissions to get access to the AcessibilityService of the Android operating system. With these permissions, an attacker can access victim’s device data, make phone calls, get SIM serial number, read contacts, read and send text messages, record calls/audio, query call logs, and access device location and ID.

Avast research team has recommended certain security measures to defend against the threat of stalkerware:

Secure your phone against all unauthorized physical access
Install a good, mainstream antivirus product on your mobile phone
Look for hotlines and victims’ services providers

Jaya Baloo, CISO, Avast said, “Stalkerware is a growing category of domestic malware with disturbing and dangerous implications. While spyware and info-stealers seek to steal personal data, stalkerware is different: it steals the physical and online freedom of the victim. Usually installed secretly on mobile phones by abusive spouses, ex-partners, so-called friends, and even concerned parents, stalkerware tracks the physical location of the victim, monitors sites visited on the internet, text messages and phone calls, undermining a person’s individual liberty and online freedom.”