As a threat researcher, I like to think I’m helping make the world a better place. We protect against malware that can compromise users’ devices, steal personal information, cost people money, and commit many other malicious acts.
It didn’t occur to me until today that we are also protecting against stalking and domestic abuse. While listening to story on National Public Radio (NPR) titled Smartphones Are Used To Stalk, Control Domestic Abuse Victims, I realized that the spyware we block on Android devices is used not only by cybercriminals to target high-profile lawyers, politicians, celebrities, or other positions of power, but also by those who commit acts of domestic violence or intimidation.
With the use of spyware installed on victim’s mobile devices, abusers are able to eavesdrop on their victims remotely, and even more scary, track them using GPS.
In fact, a staggering 85 percent of victims were tracked by GPS according to NPR, who surveyed 72 domestic violence shelters.
NPR named several companies that sell these spyware applications: mSpy, PhoneSheriff, MobiStealth, and StealthGenie.
All of these companies have apps can be run on an Android device in the background, with users none-the-wiser. Some of these apps’ features include the ability to:
- Access calendars and address books
- Control apps on the user’s device
- Monitor call logs
- Monitor conversations through popular communication apps like Skype
- Monitor instant messages
- Monitor keystrokes
- Monitor SMS conversations
- Monitor web history
- Read emails
- Record anything within the distance of the device’s microphone
- Record calls
- Remote control the device
- Track the device using GPS
In my opinion, no matter how these companies advertise their apps, there is no reason anyone should ever put one on an unsuspecting victim’s device.
I’m a proud to say that we detect all of these unethical spyware applications. Anyone that suspects they are victims of such cyber stalking can scan their mobile device using Malwarebytes for Android or Malwarebytes for iOS.
I’d like to point out that there are legitimate uses for these technologies. Although I in no way support stalking or putting such things on an “unsuspecting victim’s device”, I would certainly consider putting one on my daughters cell phone, or on a spouse’s phone if I though there might be a problem. ACK!, I can hear you screaming. Legally, if I pay for the phone and service, I can put anything I want to on it.
Ironically, I’ve been poking at and reversing phonesheriff/mobilespy recently. (The same company makes a win32 and OSX RAT called SniperSpy, the main win32 component of this wasn’t highly detected when I scanned it on virustotal.. but a couple of days after I got the sample, MBAM detected the visible setup as a PUP.)
For a company that develops malware, they sure have crappy websec in their panels and APIs.
I also lol that the iOS version of mobilespy, which of course needs a jailbreak, still asks for some random permission after installation. It seriously can’t bypass the asking for permissions dialog, when it runs as root? (I also wonder how many iOS devices are jailbroken and sitting there with SSH running and the default root password because of this malware)
People need to start getting educated on how to do internet security for your cell phone.
I think people should download an antivirus on their android devices to stop malware from infecting there phone or tablet hackers are getting a lot smarter to stealing info and phone numbers is getting a lot easier these days and it can be because we just downloaded and app from the Google play store and boom your infected.
!!!watch out for what you download!!!!