Greyware
What is Greyware?
GreywareSoftware that sits in a grey area between legitimate and malicious — annoying, intrusive, or risky, but not clearly designed to harm the user.
Greyware is an umbrella term for software whose behaviour does not meet the strict definition of malware but is unwanted, intrusive, or risky. Typical examples include aggressive adware, trackware, remote-administration tools used outside their intended context, certain crypto miners, joke programs, dialers, and questionable system "optimizers." Vendors often flag greyware in a separate category from outright malware to give administrators control over policy. Risks include privacy loss, performance degradation, security weakening through unnecessary services, and serving as a stepping stone for attackers. Defences include application allow-listing, enterprise policy management, security solutions with PUA/greyware detection, and user education on installation choices.
● Examples
- 01
Aggressive PC-cleaner suites with intrusive ads.
- 02
Free remote-access tools repurposed by attackers for unauthorised control.
● Frequently asked questions
What is Greyware?
Software that sits in a grey area between legitimate and malicious — annoying, intrusive, or risky, but not clearly designed to harm the user. It belongs to the Malware category of cybersecurity.
What does Greyware mean?
Software that sits in a grey area between legitimate and malicious — annoying, intrusive, or risky, but not clearly designed to harm the user.
How do you defend against Greyware?
Defences for Greyware typically combine technical controls and operational practices, as detailed in the full definition above.
What are other names for Greyware?
Common alternative names include: Grayware, Riskware.