Woburn, MA – March 8, 2023 – Today Kaspersky released its State of Stalkerware 2022 report, revealing that, last year, nearly 30,000 mobile users globally were targeted by stalkerware.
Stalkerware is secret surveillance software used by domestic abusers and others to track victims. The State of Stalkerware is an annual report by Kaspersky that aims to provide a better understanding of the number of people globally who are affected by this form of digital stalking. In 2022, according to Kaspersky data, 29,312 unique individuals around the world were affected by stalkerware, a number which is consistent with the 32,694 users affected in 2021. After a sustained downward trend in the years prior to 2021, this relative stability highlights the global scale of digital stalking, and suggests that the problem is not going away on its own.
According to the Kaspersky Security Network in 2022, Russia, Brazil, India, Iran, and the United States of America were the top five countries most affected by stalkerware. These countries were followed by Turkey, Germany, Saudi Arabia, Yemen and, lastly, Mexico in a list of the ten most affected nations. Overall, Kaspersky detected stalkerware cases in 176 countries around the world, proving that digital stalking continues to be a global phenomenon affecting all countries.
|United States of America
Top 10 countries most affected by stalkerware in 2022
Digital violence and the need to act on it
Stalkerware is a commercially available software that can be discretely installed on smartphone devices, enabling perpetrators to watch every step of an individual’s private life without their knowledge. As the perpetrator requires physical access (and codes) to a device, stalkerware is often used in abusive relationships. Although the data gathered by Kaspersky is anonymized, other research has shown that it is mainly women who are affected by this form of digital violence. It is important to remember that digital violence is another dimension of violence, and needs to be understood as a continuum of offline violence with real and negative effects on the victims.
Dr. Leonie Maria Tanczer, associate professor at university college London (UCL) and head of UCL’s Gender and Tech Research Group points to the relevance of Kaspersky’s research.
“It’s critical to have data on stalkerware available because quantitative evidence on the scale and nature of technology-enabled forms of coercion and control remains limited,” Tanczer said. “Whilst the report only offers insights on mobile users using Kaspersky’s IT security solutions, we can anticipate that the full extent of stalkerware usage is much bigger. These are consequently worrying but useful figures that can help provide incentives for research, industry, and practice to speed up the development of both legal and technical mitigation strategies that increase not only the detection but also the deployment of surveillance software.”
“Studies such as the State of Stalkerware report are an important check on the status quo, but we must do more to change it,” Anna McKenzie, communications manager at WWP EN. “With the #NoExcuse4Abuse, developed and implemented in cooperation with Kaspersky, we took a first step towards addressing harmful social attitudes towards technology-facilitated abuse and stalkerware. Digital devices and online spaces offer the perfect environment for abusive partners to extend control over their partners’ lives. However, checking a partner’s phone, reading their e-mails, being aware of their location and knowing their passwords has become so commonplace that men often do not even realise they are disclosing abusive behaviours.
“We believe that beyond the obvious need for legal regulation, capacity-building and general awareness raising on the issue of digital violence, it is of the utmost importance that abuse-supportive attitudes regarding tech-facilitated abuse are addressed in a widespread manner and from an early age.”
“Cyberstalking has a concrete impact on the real lives of those who suffer it,” said Elena Gajotto, vice president and project manager at Una Casa per l’Uomo. “There are medium-to long-term psychological, physical and social effects that we see daily in our anti-violence centers. Cyberstalking encompasses different types of behaviours such as persistent messaging, monitoring a victim’s activity, or other forms of online pursuit, and as the same study states, ‘it may be that cyber stalking is simply an additional tool in the stalker’s toolkit.'
“It is therefore important to emphasize the danger of this phenomenon. Society needs to pay more attention to the suffering from digital violence. To this end, we are working with our members as well collaborating with Kaspersky and all Coalition Against Stalkerware partners to support victims and to better train professionals working in the field of domestic violence.”
Kaspersky is actively working to improve the protection of users. As part of this effort, Kaspersky has updated its Privacy Alert – a notification if stalkerware is found on a device. The update means that the notification now not only informs the user about the presence of stalkerware on the device, but also warns the user that if stalkerware is removed, the person who installed the software will be alerted. Since it was introduced in 2019, Kaspersky’s Privacy Alert has been included in all of the company’s consumer security solutions to protect against stalkerware.
2022 update of Kaspersky's Privacy Alert to warn about removing stalkerware
“Thousands of people every year are victims of stalkerware,” said Christina Jankowski, senior external relations manager at Kaspersky. “Given its clear link to violence, this is a worrying trend, which is why we are working at different ends of the spectrum to address the problem. Aside from raising awareness, sharing our expertise, and working with partners, Kaspersky has now updated its Privacy Alert to users if stalkerware is found on their devices so that they will now be made aware that a perpetrator will notice if the software is removed. The reason behind this is simple: if the software is deleted it erases proof that stalkerware has been installed, and if a perpetrator loses control over a device, the situation might escalate. Our mission is to ensure that victims understand the best course of action to deliver the safest possible outcome, and reverse the trend against this form of digital violence.”
Kaspersky works with experts and organizations in the field of domestic violence, ranging from victim support services and perpetrator programs through to research and government agencies, to share knowledge and support both professionals and victims. Kaspersky is one of the co-founders of the Coalition Against Stalkerware, an international group dedicated to tackling stalkerware and combating domestic violence. From 2021-2023, Kaspersky was a consortium partner of the EU project DeStalk, co-funded by the Rights, Equality, and Citizenship Program of the European Union. In June 2022, Kaspersky launched a website to share further information about TinyCheck, a free, safe and easy-to-use tool to check devices for stalkerware and monitoring apps.
Read the full report looking into stalkerware threats in 2022 on Securelist.
Kaspersky is a global cybersecurity and digital privacy company founded in 1997. Kaspersky’s deep threat intelligence and security expertise is constantly transforming into innovative security solutions and services to protect businesses, critical infrastructure, governments, and consumers around the globe. The company’s comprehensive security portfolio includes leading endpoint protection and a number of specialized security solutions and services to fight sophisticated and evolving digital threats. Over 400 million users are protected by Kaspersky technologies, and we help 240,000 corporate clients protect what matters most to them. Learn more at usa.kaspersky.com.
Sawyer Van Horn
 “Cyber Violence against Women and Girls: Key Terms and Concepts” (2022) European Institute for Gender Equality