Home » Latest news » How to keep mobile devices resilient against spyware and stalkerware

How to keep mobile devices resilient against spyware and stalkerware

Smartphone table spyware
Smartphone table spyware. Photo by RDNE Stock project on Pexels.

Phones and tablets have become the closest thing many of us have to a digital diary. They hold messages, photos, location history, health data and work documents. That makes them a prime target not only for criminal spyware but also for a growing problem: stalkerware used in abusive relationships.

Stalkerware is often marketed as “monitoring” or “family tracking” tools, yet it is frequently misused to covertly track partners, ex-partners or employees. Understanding how these tools work and what warning signs to watch for can help you react early and limit the damage.

What spyware and stalkerware actually do

Spyware is software that secretly gathers information from a device and sends it elsewhere. It can log keystrokes, read emails, capture screenshots or intercept text messages and app notifications. Criminal groups typically use it to steal passwords, banking data or company secrets.

Stalkerware is a type of spyware that focuses on intimate surveillance. It is often installed by someone with physical access to the phone. Common features include viewing messages, call logs, photos, location, microphone and camera feeds, sometimes in real time. Unlike parental control tools, this is usually done without consent and without visible alerts.

Common ways these apps end up on your phone

Most stalkerware requires direct access to the device for a few minutes. An abuser might ask to “check something” on your phone, install an app and then hide it. In some cases, they might know or guess your screen lock code or have persuaded you to share it earlier.

Spyware from criminal actors more often arrives through malicious links, fake apps or files. Examples include a message urging you to install a “security update,” an attachment that appears to be an invoice, or a fake version of a popular app downloaded from outside the official app store.

Warning signs that deserve attention

Modern stalkerware can be well hidden, and none of the signs below are proof on their own. However, a combination of them, especially in the context of a controlling or abusive relationship, should not be ignored.

  • Battery draining or data usage increasing sharply without a clear reason
  • Phone running unusually hot or sluggish, even with simple tasks
  • Settings like unknown “Device admin apps” or “Accessibility services” enabled without your knowledge
  • Unfamiliar apps with generic names or icons, especially if they request broad permissions
  • Someone repeatedly knows where you are or what you said in conversations they were not part of

In some cases, an abuser might brag about knowing private details or insist that “phones always share everything” to disguise that they have installed monitoring tools.

First safety step: think about your personal risk

Woman checking smartphone
Woman checking smartphone. Photo by Kev Costello on Unsplash.

If you suspect stalkerware in the context of domestic abuse or coercive control, your physical safety comes first. Suddenly removing the software or confronting the person can sometimes escalate the situation. Consider using a different device, such as a trusted friend’s phone, to seek help.

Specialist organizations in many countries advise that you document suspicious behavior, reach out to local helplines and plan changes carefully. In some situations, experts may recommend leaving the suspected device as it is, so you are not tipping off the abuser while you prepare to leave or get support.

Checking your device on Android

On Android, start by reviewing the installed apps list and disabling the option to install apps from unknown sources. Open Settings, then Apps, and tap “See all apps” if needed. Look for apps you do not recognize, especially those with names like “System Services,” “Device Care” or misspelled versions of popular tools.

Next, check special access rights. Under Settings, open Security or Privacy and review “Device admin apps,” “Accessibility” and “Usage access” (names may vary by manufacturer). If an unknown app has these powerful permissions, treat it as suspicious.

Checking your device on iOS

On iPhones and iPads, non-jailbroken devices are harder to infect with traditional stalkerware, but there are still risks. Check for unexpected configuration profiles under Settings and then General. If profiles exist that you did not install, such as for “management” or “remote monitoring,” investigate them.

Also review which apps have access to location, microphone, camera and photos under the Privacy section in Settings. While regular apps request these for legitimate reasons, an unexpected app with full access that you do not remember installing is a concern.

Using security tools without creating new risks

Both Android and iOS include built-in malware scanning features, and reputable security apps can help detect known spyware. Run a scan from a trusted vendor that you download directly from Google Play or the Apple App Store. Avoid tools found via pop-up ads or unsolicited links.

If you are in an abusive situation, be aware that visible security apps may alert the abuser that you are taking steps. Before installing anything, think about how the other person might react and whether you have access to a safe device for researching your options.

Stronger habits that limit future monitoring

Smartphone table spyware
Smartphone table spyware. Photo by RDNE Stock project on Pexels.

Many stalkerware incidents begin with someone obtaining a screen lock code or password. Use a unique PIN or passphrase and avoid patterns that are easy to guess. Where possible, use biometric options such as fingerprint or face recognition, but keep in mind that in some situations an abuser could force you to unlock the device.

Review app permissions regularly and remove those that are not necessary. If a simple flashlight app requests location or SMS access, that is a red flag. Keep the operating system and apps updated, as many updates close vulnerabilities that could be abused by spyware.

Backups, resets and starting fresh

In cases of persistent suspicion, a full factory reset can clear most consumer-grade stalkerware. Before resetting, back up your data to a trusted location and sign out of accounts you suspect might be compromised. After the reset, install apps slowly from official stores and avoid restoring unknown configuration profiles or third-party “backup” apps.

Resetting does not help if the phone has been rooted or jailbroken with advanced tools, or if the abuser also controls your online accounts. If you think this may be the case, seek expert advice, for instance from a local digital rights organization or a support service familiar with technology-facilitated abuse.

When to seek professional or legal help

If you uncover clear evidence of spyware or stalkerware, take screenshots or photos of the findings with another device. This may be useful if you decide to involve law enforcement or need documentation for legal proceedings. Do not share this evidence via channels you believe are monitored.

Depending on your country, installing stalkerware without consent may violate privacy, surveillance or computer misuse laws. Local digital rights groups, domestic violence organizations or consumer protection agencies can often explain relevant options and help you navigate next steps.

Staying informed and helping others

Spyware and stalkerware evolve quickly, but awareness goes a long way. Regularly reading up-to-date guidance from reputable security vendors, non-profit coalitions that track stalkerware and official consumer agencies will keep you ahead of common tactics.

Finally, talk about these issues with friends and family when it feels appropriate. Many people experiencing monitoring feel isolated or think they are “imagining things.” Knowing that digital abuse is real, recognizable and addressable can make it easier to reach out for help.

0 comments