Cyberstalking is the repeated use of electronic communications — email, social media, messaging apps, or tracking software — to harass, monitor, or threaten another person. Unlike a single unwanted message, it involves a pattern of behavior designed to intimidate or control the target. It is a federal crime under 18 U.S.C. § 2261A and illegal in all 50 U.S. states, though definitions and penalties vary by jurisdiction.
According to a 2021 Pew Research Center study on online harassment, 41% of U.S. adults have personally experienced some form of online harassment. Cyberstalking sits at the severe end of that spectrum — and it can escalate to physical danger. The U.S. Department of Justice notes that cyberstalking frequently precedes or accompanies physical stalking, which is why recognizing the signs early matters.
This guide identifies the most common cyberstalking signs, explains the tactics perpetrators use to monitor targets, and provides a practical action plan so you can secure your accounts, reduce your digital exposure, and report the behavior to the appropriate authorities.
Online Harassment & Cyberstalking: The Numbers
Pew Research Center, State of Online Harassment, 2021
U.S. Bureau of Justice Statistics, Stalking Victimization Survey
DOJ National Crime Victimization Survey (NCVS)
Warning Signs You May Be a Cyberstalking Target
Cyberstalking is not always obvious at first. Perpetrators often begin with behavior that seems coincidental before escalating. The DOJ Office on Violence Against Women describes stalking as a course of conduct — meaning no single act constitutes stalking, but the pattern as a whole does. Recognizing that pattern early is the first step toward getting help.
Unwanted, Repeated Digital Contact
One of the clearest cyberstalking signs is a high volume of unsolicited messages — texts, emails, direct messages, or tagged social media posts — especially after you have asked for contact to stop. The defining element is persistence: a single unwanted message is not stalking, but dozens of messages across multiple platforms, or new accounts created the moment you block an existing one, establish a deliberate and willful course of conduct.
Evidence That Someone Is Monitoring Your Location or Activity
If someone repeatedly appears at locations you have not publicly announced — a coffee shop, a gym, a friend's home — they may be tracking your digital activity. Common methods include:
- Reading GPS coordinates embedded in photos you post online (EXIF metadata)
- Monitoring check-ins and tagged posts on social media in real time
- Accessing shared location features in apps like Find My, Google Maps sharing, or Life360 that were previously granted and never revoked
- Installing tracking software on a device they had physical access to at some point
References to private conversations you have had — details you never shared publicly — are a strong signal that someone may have unauthorized access to your accounts or device.
Threatening or Escalating Communication
Any message that threatens your physical safety, livelihood, family, or reputation crosses from harassment into a criminal offense in most jurisdictions. Threats do not have to be explicit; implied threats — such as references to knowing your daily schedule or where you park — can qualify depending on applicable state law. Save every threatening message verbatim, preserving the timestamp and platform name.
Identity Impersonation or Account Manipulation
Cyberstalkers sometimes create fake profiles using your name, photos, or personal details to damage your reputation or contact people in your network. Others attempt to take over existing accounts through password-reset abuse or phishing. If colleagues report receiving strange messages from "you," or if you receive unexpected password-reset emails you did not initiate, treat these as serious cyberstalking warning signs requiring immediate account security action.
How Cyberstalkers Monitor and Control Their Targets
Stalkerware & Spyware
Commercial apps marketed as parental controls are frequently misused to secretly monitor calls, texts, GPS location, and app activity on a target's device without their knowledge.
Fake Accounts & Sock Puppets
Perpetrators create false social media profiles to continue contact after being blocked, gather information from mutual connections, or impersonate the target to damage their reputation.
Data Broker Harvesting
Publicly available records on data broker sites — address history, relatives, phone numbers — give stalkers a constantly refreshed intelligence source about their targets.
Account Takeover Attempts
Using password-reset flows, phishing emails, or credential leaks from data breaches, cyberstalkers attempt to gain access to email, social media, and financial accounts.
Photo EXIF Metadata
Unstripped EXIF data in images posted online can reveal the exact GPS coordinates, device model, and timestamp of where a photo was taken — a precision location tracking tool.
Social Engineering Your Network
Stalkers contact the target's friends, family, or coworkers — sometimes posing as concerned parties — to extract location data, schedule information, or relationship details.
Securing Your Accounts and Reducing Your Digital Footprint
Before you can effectively report cyberstalking, you need to stabilize your digital security so the perpetrator cannot observe your response actions. Start by changing passwords on all accounts connected to your primary email address — beginning with the email itself, then social media, then financial accounts. Use a password manager to generate long, unique credentials for each service. Our guide on CISA guidance on password managers and unique passwords provides a practical starting point if you haven't used one before.
Next, enable Multi-Factor Authentication (MFA) on every account that supports it. NIST guidelines on phishing-resistant MFA favor hardware security keys or authenticator apps over SMS codes, which are vulnerable to SIM-swapping — a method sometimes used by perpetrators who know their target's phone number.
Review App Permissions and Location Sharing
Open your phone's settings and audit which apps have access to your location, microphone, and contacts. Revoke permissions that are not strictly necessary for the app to function. Check whether any location-sharing sessions are active in Google Maps, Apple Find My, Snapchat, or any family-tracking apps — and disable sharing with recipients you no longer actively trust. If your device was ever in the physical possession of the suspected cyberstalker, treat it as potentially compromised and run a full security scan.
Locking Down Social Media Privacy
Set all social media profiles to private and audit your followers or connections for unfamiliar accounts. Remove specific location information from your profile — a general city is usually sufficient; avoid listing your neighborhood, employer address, or workplace. Before posting photos, disable geotagging in your device's camera settings (typically found under Settings → Camera or Settings → Location) to prevent EXIF coordinate data from being embedded. Disable "friends of friends" discoverability settings where available, and turn off search-engine indexing of your profile.
For a broader view of how your personal data circulates online, see our guide on dark web monitoring — what it is and why you need it. Data broker sites frequently surface information — your current address, phone number, and relatives' names — that cyberstalkers actively exploit, and monitoring services can alert you when new records appear with your information.
How to Protect Yourself from Cyberstalking: Step-by-Step
Secure Your Primary Email Account
Change your password immediately, enable MFA, and review active login sessions — revoke any you do not recognize. Your email is the recovery key for every other account you own.
Change Passwords on All Connected Accounts
Use a password manager to generate unique, complex passwords for every service linked to your email address, prioritizing social media, banking, and cloud storage accounts.
Scan Devices for Stalkerware
Run a reputable mobile security app to detect hidden monitoring software. On Android, review Settings → Apps → See All Apps and Settings → Security → Device Admin Apps for anything unfamiliar.
Audit Privacy Settings on All Platforms
Set social profiles to private, disable location sharing, revoke unneeded app permissions, and remove your phone number from publicly visible profile fields.
Request Removal from Data Broker Sites
Manually opt out of major data brokers — Spokeo, Whitepages, BeenVerified — or use a data removal service to reduce the personal information a cyberstalker can harvest about you.
Document Every Incident with Timestamps
Screenshot every harassing message with the sender's username, platform name, and date visible. Keep a written log of each event with specific, factual details. Never alter or delete evidence.
Report to the Platform and Law Enforcement
File abuse reports with each platform involved, then contact local law enforcement with your documented evidence — ask specifically about cyberstalking statutes in your state.
Documenting Cyberstalking Evidence for Law Enforcement
Prosecutors need evidence that demonstrates a pattern of behavior, not just a single incident. Start a dedicated evidence file the moment you suspect you are being cyberstalked. Comprehensive documentation should include:
- Screenshots of every harassing message, with the sender's username, the platform name, and the date/time stamp clearly visible in each image
- Preserved URLs of any public posts targeting you — copy the full URL before content can be deleted or accounts deactivated
- A written incident log listing date, time, platform, a factual description of what happened, and any witnesses present
- Records of unwanted real-world contact you believe was enabled by digital tracking — include the location, time, and what was said or done
Do not respond to or confront the cyberstalker, as this can escalate the situation and complicate legal proceedings. Avoid deleting messages even when they are distressing — courts need original records. If you believe stalkerware is installed on your device, consult with law enforcement or a domestic violence advocate before attempting to remove it, because removal may destroy forensic evidence needed for prosecution.
Where to File a Report
Start with an in-app abuse report on each platform involved — most can preserve account and message records tied to a law enforcement legal hold request. Then contact your local police department and ask them to document it specifically as a stalking or cyberstalking case under your state's statute. If the perpetrator is in a different state, the FBI's Internet Crime Complaint Center (IC3) accepts cybercrime complaints across jurisdictional lines. The Cyber Civil Rights Initiative offers a crisis helpline and legal referrals specifically for victims of online abuse and cyberstalking. If you are in immediate physical danger, contact local law enforcement — and consider requesting a civil protective order, which many states allow to be grounded in cyberstalking conduct.
Before You Remove Stalkerware from Your Device
Do not delete suspicious apps without consulting law enforcement first. Removing stalkerware before it can be forensically documented may destroy evidence needed for prosecution. Contact local police, a domestic violence advocate, or the National Domestic Violence Hotline (1-800-799-7233) before taking action. If you need to communicate privately while evidence is preserved, use a separate, clean device for sensitive conversations.
Strengthening Your Broader Online Security Posture
Cyberstalking rarely exists in isolation — it often intersects with identity theft, account takeover, and broader digital exposure risks. Building layered security makes you a harder target and limits the damage a perpetrator can cause even if they already hold some of your personal information.
If a cyberstalker has been researching you online, there is a real chance that some of your credentials have surfaced in breach databases or dark web forums. Understanding dark web monitoring — what it is and why you need it can help you identify exposed accounts before they are weaponized against you. Phishing is also a common method perpetrators use to take over accounts, and targeted attacks against known individuals tend to be far more convincing than mass campaigns — reviewing how to spot phishing emails will help you recognize personalized attempts.
If a cyberstalker has already used your information to open accounts or commit fraud in your name, our guide on identity theft recovery steps walks through reversing that damage systematically. If you have children at home, the parental controls guide for home internet safety helps ensure younger family members are not inadvertently sharing location data or contact details that a stalker could exploit. For privacy-focused internet use, consider reviewing your options with a personal VPN for privacy and security.
Related Security Resources
Get a Personal Cybersecurity Assessment
If you're concerned about cyberstalking or want to harden your digital security before a threat emerges, our team can evaluate your current exposure and walk you through targeted protective measures.
Frequently Asked Questions About Cyberstalking
Under U.S. federal law (18 U.S.C. § 2261A), cyberstalking involves using electronic communications to place a person in reasonable fear of death or serious bodily injury, or to cause substantial emotional distress. All 50 states have cyberstalking or electronic harassment statutes, though the exact definitions, required intent, and penalties vary by jurisdiction. A local attorney familiar with your state's stalking laws can advise on what specific conduct qualifies in your area.
Yes. Cyberstalking can occur through any digital channel: social media platforms, email, text messages, dating apps, gaming platforms, professional networks like LinkedIn, and even through GPS tracking devices placed on a vehicle. Perpetrators frequently use multiple platforms simultaneously to maintain contact after being blocked on any single channel, which is why platform-by-platform blocking alone is rarely sufficient.
Common indicators include unexpectedly fast battery drain, elevated mobile data usage, the phone staying warm when idle, and unfamiliar apps in your installed applications list. On Android, check Settings → Apps → See All Apps for anything unrecognized, and review Settings → Security → Device Admin Apps for apps with elevated privileges you did not grant. On iPhone, review unknown devices listed under Settings → [Your Name] and check which apps have iCloud access. Running a reputable mobile security scan — such as Malwarebytes for Mobile — can surface hidden monitoring software.
Document every incident with screenshots showing the sender's username, platform name, and a visible date/time stamp. Keep a factual written log with the date, time, platform, and a specific description of each event. Save full URLs of public posts targeting you before they can be deleted. If the stalker appears at locations you never announced publicly, record the date, time, and precise location. Store all evidence in a secure cloud account the stalker has no access to, and provide unaltered copies to law enforcement.
Yes. Federal law (18 U.S.C. § 2261A) applies specifically to cyberstalking that crosses state lines and does not require the perpetrator and victim to share the same jurisdiction. You can file a complaint directly with the FBI's Internet Crime Complaint Center at ic3.gov. Local law enforcement can also coordinate with federal agencies on serious cases involving out-of-state perpetrators.
Most major data brokers — Spokeo, Whitepages, Intelius, BeenVerified, and others — provide opt-out processes on their websites, typically listed under "Privacy" or "Do Not Sell My Info." The process involves submitting identifying details to confirm removal. Automated services like DeleteMe or Privacy Bee submit opt-out requests across dozens of brokers for an annual subscription fee. Because brokers can re-acquire and re-list your information from new data sources, periodic re-checks are necessary rather than a one-time removal.
A Virtual Private Network (VPN) masks your IP address and encrypts your internet traffic, which limits certain types of location tracking. However, it does not protect against stalkerware installed on your device, compromised account credentials, EXIF metadata embedded in photos you post, or data broker listings of your home address and phone number. A VPN is one useful layer — not a standalone solution. Combine it with strong MFA, private social media settings, device security scans, and data broker removal for meaningful protection against cyberstalking.
Notify your employer's HR or security team immediately so they can monitor for further contact and consider removing your direct contact information from public-facing directories or websites. Brief trusted family members on the situation without sharing specific details that could be inadvertently passed along. Document every contact the cyberstalker makes with third parties as part of your evidence file — third-party harassment and contact often strengthens a stalking case under both state and federal law.
Schedule
Worried about your digital security?
Get a personalized review of your online exposure and protection options.
