X

'Stalking apps' under fire from FTC

Stalkerware like MobileSpy, PhoneSheriff and TeenShield were tracking physical and online movements without people's knowledge, the FTC says.

corinne-reichert-headshot
corinne-reichert-headshot
Corinne Reichert Senior Writer
Corinne Reichert (she/her) grew up in Sydney, Australia and moved to California in 2019. She holds degrees in law and communications, and currently writes news, analysis and features for CNET across the topics of electric vehicles, broadband networks, mobile devices, big tech, artificial intelligence, home technology and entertainment. In her spare time, she watches soccer games and F1 races, and goes to Disneyland as often as possible.
Expertise News, mobile, broadband, 5G, home tech, streaming services, entertainment, AI, policy, business, politics Credentials
  • I've been covering technology and mobile for 12 years, first as a telecommunications reporter and assistant editor at ZDNet in Australia, then as CNET's West Coast head of breaking news, and now in the Thought Leadership team.
Corinne Reichert
2 min read
keyboard-security-privacy-laptop-hacking-7913

Stalkerware can be installed on your phone without you knowing.

James Martin/CNET

The US Federal Trade Commission has settled its first case against a company it said produced "stalking apps" and "stalkerware." Retina-X Studios developed and sold apps called MobileSpy, PhoneSheriff and TeenShield that secretly monitored people through their phones, Lisa Weintraub Schifferle, an FTC attorney, said in a blog post Tuesday.

The apps collected information, including text messages, photos, call logs, GPS locations and browser history, without the knowledge or consent of the phone's owner. Originally marketed for parents to keep track of children or for workplaces to keep tabs on employees, the FTC alleged the apps were used by abusers to track their victims' physical and online activities.

"To install the apps, purchasers often had to weaken the security protections on your smartphone (sometimes called jailbreaking or rooting),"  Weintraub Schifferle wrote. "Once a purchaser installed the app on your phone, they could remove the icon, so you wouldn't know they were monitoring you."

The FTC had also alleged that the data, including children's information, wasn't kept confidential and safe by Retina-X Studios. The settlement states the company must ensure its apps are "used only for legitimate purposes," that all data it's collected so far be destroyed and that the company develop a better security program.

Think there might be stalkerware on your phone? The FTC said clues include the phone's battery draining faster than normal; unexplained charges on your bill; trouble turning off your phone; an abuser has physical access to the device; and that an abuser knows specific info about you.

You can also check to see if your phone has been jailbroken; reach out to law enforcement and domestic violence groups; and reset your phone or buy a new one, the FTC said.

On Wednesday, the Department of Homeland Security's cybersecurity arm, the Cybersecurity and Infrastructure Security Agency, repeated the FTC's warning of spyware being used maliciously.

"Get help. Law enforcement can determine if spyware is on your phone," the CISA recommended.

Originally published Oct. 22, 2:48 p.m. PT.
Update, Oct. 23: Adds update from the CISA.

24 ways to make your home more secure in 2 days

See all photos