Spyware
What is Spyware?
SpywareMalware that secretly collects information about a user, device, or organization and sends it to an external party.
Spyware operates covertly, gathering data such as browsing history, credentials, location, keystrokes, screenshots, microphone or camera feeds, and instant messages, then transmitting them to an attacker-controlled server. It ranges from grey-area adware-style trackers to highly targeted commercial implants used against journalists, dissidents and executives. Distribution vectors include malicious apps, drive-by downloads, exploit chains, malicious links and stalkerware installed by an abuser with physical access. Defences include verified app stores, mobile EDR/MDM, OS and browser updates, restrictive permissions, encrypted communications, and periodic device hygiene checks.
● Examples
- 01
Pegasus, a commercial mobile spyware platform used to target journalists.
- 02
FinFisher (FinSpy), a government-grade surveillance toolkit.
● Frequently asked questions
What is Spyware?
Malware that secretly collects information about a user, device, or organization and sends it to an external party. It belongs to the Malware category of cybersecurity.
What does Spyware mean?
Malware that secretly collects information about a user, device, or organization and sends it to an external party.
How do you defend against Spyware?
Defences for Spyware typically combine technical controls and operational practices, as detailed in the full definition above.
What are other names for Spyware?
Common alternative names include: Spy software, Stalkerware.