← All glossary terms Glossary

What is Spyware?

Malicious software that secretly gathers information about a person or organization without their knowledge.

Spyware is malware designed to quietly collect information — keystrokes, passwords, browsing activity, screenshots, or files — and send it back to an attacker. It is built to stay hidden, often riding in on a malicious download, attachment, or bundled software. Because it steals credentials and sensitive data, spyware is frequently a precursor to account takeover, fraud, or a larger breach. Behaviour-based endpoint tools detect spyware by the suspicious things it does — capturing input, contacting unfamiliar servers — rather than waiting to recognize the specific program.

  • Secretly captures keystrokes, passwords, screens, and files.
  • Often a precursor to account takeover, fraud, or a larger breach.
  • Detected by behaviour — input capture and contact with unfamiliar servers.

En français

Logiciel espion

Un logiciel malveillant qui recueille secrètement des informations sur une personne ou une organisation à son insu.

Un logiciel espion est un maliciel conçu pour recueillir discrètement des informations — frappes au clavier, mots de passe, navigation, captures d'écran ou fichiers — et les renvoyer à un attaquant. Il est fait pour rester caché et arrive souvent par un téléchargement malveillant, une pièce jointe ou un logiciel groupé. Comme il vole des identifiants et des données sensibles, il précède fréquemment une prise de contrôle de compte, une fraude ou une atteinte plus vaste. Les outils de terminaux fondés sur le comportement le détectent par ce qu'il fait — capter la saisie, contacter des serveurs inconnus — plutôt qu'en reconnaissant le programme précis.

Spyware: frequently asked questions

How does spyware get on a device?

Usually through a malicious download, an infected attachment, or software bundled with something else. Some arrives via phishing links. It's designed to install quietly and stay hidden.

How do I remove spyware?

Isolate the device from the network, run a reputable endpoint security tool, and change any passwords that may have been captured. If it's a business device, treat it as a potential breach and investigate the scope.

Want to talk through how this fits your environment?

Book a no-obligation consultation and we'll explain how this plays out for an organization like yours.

Talk to our team