Even though your mobile device has many built-in safeguards to preserve your privacy and keep your data safe, it could still be subject to snooping if someone you know gains access to your accounts or installs hidden programs, or stalkerware, that follow you about. These malicious apps may spy on you by taking use of permissions and built-in capabilities on your Android or iPhone. Here’s how to find stalkerware on your smartphone and get rid of it.
What is a stalkerware?
Stalkerware is a type of malware that tracks and monitors your device’s activities, including messages, images, and location in real time, without your permission. Most frequently, stalkerware is an app that is downloaded straight to your device. It can be hidden from your home screen or masqueraded as something normal to make it harder for you to spot anything fishy. TechCrunch points out that Cocospy, Spyic, and TheTruthSpy are examples of popular stalkerware applications. Stalkerware can be installed or side-loaded from unapproved sources other than the Apple and Google Play stores.
Large data usage on your device, a warmer or slower-than-normal phone, a faster-than-normal battery drain, an increase in screen time, and odd alerts are some potential indicators of stalkerware (and other dangerous programs). But stalkerware can exist without any of these problems. The Coalition Against Stalkerware claims that a typical indicator of monitoring isn’t really related to your phone’s technological features: Instead, it’s the stalker’s altered conduct or awareness of your actions.
Keep in mind that although stalkerware apps are one way for someone to secretly monitor you, other phone settings, such backups, location sharing, and Google and Apple accounts that are controlled or accessible by someone else, can also be misused.
If you think your phone may be compromised, you should consult Cornell University’s Clinic to End Tech Abuse (CETA), which offers comprehensive resources for detecting and eliminating stalkerware as well as other security measures to protect your device from eavesdropping.
Create a safety plan first
You must have a safety plan in place before trying to remove stalkerware from your device or alter shared access to your accounts and apps. The danger of abuse or harassment may rise if monitoring applications are removed or permissions are updated, alerting the person who installed them. A list of organizations and services for survivor aid in various nations may be found on the Coalition Against Stalkerware.
Eliminating stalkerware also has the potential to destroy any evidence you might need to provide to law police if you intend to report the occurrence. You might want to record your experiences in a journal.
Check for unrecognized apps
Even without an icon on the home screen, you can still access installed apps in your device’s settings. This can be found in the settings app on both iOS and Android, under the Apps or App management option. (On iOS, you have to scroll all the way to the bottom of the list to see hidden apps.) Keep an eye out for anything unfamiliar.
You should look for any apps listed under this section of your settings because stalkerware on Android may exploit the access granted by your device’s accessibility mode. You can have a harmful program installed if you don’t use accessibility features or don’t identify an app. Device admin settings may potentially be exploited by stalkerware. Go to Device Admin App under Settings > Security. Nothing should be included here for the majority of personal devices.
Review app permissions and settings
Because stalkerware may misuse access to your device’s data, permissions are another approach to spot questionable programs. In your settings, you can view permissions for each individual app, including location, camera, microphone, and keyboard access. TechCrunch advises carefully examining which third-party apps on Android have access to your notifications, as this permits monitoring of your messages and alerts (check your device settings for Special app access).
To control permissions and sharing with people and apps, utilize Apple’s Safety Check feature (Settings > Privacy & Security > Safety Check) if you’re running iOS 16 or later. Among other settings, you can update your passcode, reset system privacy permissions, switch devices linked to your Apple account, and verify who you are sharing information with. There is a Quick Exit button in case you need to exit with a single push, as well as an Emergency Reset option that will instantly stop transmitting all data from your device.
Use this CETA guide to iOS safety if you don’t have Safety Check installed on your device or if you want to look into specific phone settings that might be sharing your data with someone else, such Family Sharing or text message forwarding.
How to remove stalkerware from your device
Getting a new phone, which you can and should lock down with a new PIN to stop someone with physical access to your device from installing dangerous apps, is the most drastic action you can take to avoid stalkerware.
A factory reset is an additional choice that will remove all data and programs from your smartphone. This may be found in the Settings app on Android and Settings > General > Transfer or Reset iPhone on iOS (you can find the exact path on your device manufacturer’s support website). Keep in mind that any data that isn’t backed up, such contacts, messages, and pictures, will be lost. Even if you’re not positive whether your phone has a stalkerware program installed, a factory reset can be helpful. However, it could not resolve the problem if the spy still has access to the Google account or Apple ID linked to your device.
Additionally, you can manually remove or uninstall programs from your device and utilize an antivirus app from a reliable provider to check for hidden and harmful apps (Google Play Protect can also do this on Android).
After deleting stalkerware, make sure your device has a new lock screen passcode that is difficult for someone with physical access to figure out. You should also take precautions to secure your email and other accounts by using two-factor authentication and using strong, one-of-a-kind passwords.
