How big a threat is spyware?

To older readers, the phrase “spyware threat” might sound like something from a Cold War espionage drama.

Sadly, spyware threats are very much a modern phenomenon.

They encompass any malicious software which is embedded on a user’s device, gathering and distributing data without that user’s knowledge or consent.

As with many modern phenomena, the earliest spyware threats trace their origins back to the 1990s, though their dangers have increased exponentially since then.

Read on to discover why spyware is such a threat, and how to ensure someone can’t use your computer or mobile device to illicitly monitor your activities…

The spy who robbed me

Cybercrime is expected to cost the world almost ten trillion dollars in 2024, and spyware is a key component alongside phishing, DDoS attacks and ransomware.

With around 190,000 new malware attacks reported every second, don’t be naïve enough to assume you’re not of interest to cybercriminals.

If you have a web-enabled smartphone, tablet or computer, it’ll almost certainly have financial data associated with it, from biometric payment apps to online banking accounts.

These are among the most lucrative prizes for the swathes of thieves and vagabonds operating across cyberspace.

Keystroke logging enables third parties to identify login credentials, passwords, email addresses and other useful data, before accessing your accounts through impersonation.

Other spyware threats are designed for more specific activities such as industrial espionage, stalking or identity theft.

Governments also use spyware to an extent, though this phenomenon is rarely discussed outside the Dark Web, and any legislative oversight isn’t widely reported, either.

You might be specifically targeted by spyware or become an inadvertent victim of a mass distribution of malware.

Either way, the outcomes could be catastrophic. And nobody is entirely safe.

I spy with my little iPad

Some iOS and macOS users consider themselves protected against the maelstrom of malware targeting Windows, but in reality, any device is a potential target.

Spyware is often disguised as legitimate software, or embedded in a program as a Trojan, as discussed on these pages a few weeks ago.

People often install software without doing much due diligence on it, while the truly gullible continue to open email attachments from unknown senders and click on spam links.

Spyware may be accidentally acquired from a drive-by download incident where a web server or webpage is unwittingly (or knowingly) infected.

By definition, spyware remains hidden on an infected device, though some warning signs may still become apparent.

Look for sluggish performance or a CPU working flat out when the device isn’t being used, strange pop-ups or unwanted websites appearing, and spam messages seemingly sent from your own account.

Sadly, some people only realise their devices have been compromised when they’re locked out of their own accounts, their device is held to ransom, or their identity is impersonated.

Attack is the best form of defence

As a central plank of malware, spyware defence tends to come in the form of wider anti-malware software by the likes of Norton, Kaspersky, McAfee and Avast.

These programs all adopt a preventative approach to spyware, blocking pieces of program code identified as potentially harmful, and encouraging users to remain vigilant.

Antivirus packages scan and flag email attachments as suspicious, undertake daily scans of hard drives, warn you about insecure website domains and block known malware at source.

Nonetheless, spyware may occasionally slip through the net, at which point specialist software might be required to unearth and eradicate it.

These tools include Spybot, ComboFix and Emsisoft Emergency Kit, whose acronym seems entirely fitting if you’re concerned about a potentially infected device.

These advanced tools track down spyware traces, identify compromised archives, run rootkit scans and disable tracking cookies which increase future vulnerability.

Best of all, they’re often free to use (at least temporarily), enabling you to blitz whatever spyware has taken root on your devices without any financial penalty.

Doing so might just avert other financial penalties, such as bank accounts being compromised or credit cards being maxed out.