ELI5: What is Spyware?
It’s like a hidden camera in your room that watches everything you do on your computer — what you type, what websites you visit, what files you open — and secretly sends it all back to the person who planted it.
Definition
Spyware is malicious software that covertly monitors and records user activity without the user’s knowledge or consent. It collects sensitive information—including keystrokes, screenshots, browser history, login credentials, financial data, and personal communications—and transmits this information to the attacker. Spyware may be installed alongside legitimate software, delivered through phishing, or exploited through browser vulnerabilities.
Key Details
- Often bundled with freeware, browser extensions, or pirated software to deceive users into installing it.
- Capabilities: keylogging, screenshot capture, webcam/microphone recording, browser history harvesting, credential theft.
- Commercial spyware (stalkerware, parental monitoring tools): Legitimately marketed but often misused for domestic surveillance.
- Nation-state spyware: Pegasus (NSO Group), FinFisher—sophisticated tools targeting activists, journalists, and high-value individuals.
- Detection: antimalware scans, monitoring for unusual network connections, EDR behavioral analysis.
Connections
- Parent: malware-types — a privacy-invasive malware category
- See also: keylogger, potentially-unwanted-programs-pups