Seven apps quietly record audio through your phone in the background — here is how to shut every one of them off

Your phone’s microphone can be activated by apps running in the background, and in at least one confirmed case, a commercial app did exactly that without telling anyone. Federal regulators have taken enforcement action against companies that either recorded users through their phones or marketed the ability to do so to advertisers. The cases are documented, the penalties are real, and the practical risk extends well beyond the specific firms that got caught.

Below is what the enforcement record actually shows, which categories of apps pose the greatest risk, and the exact steps to lock down microphone access on both iPhone and Android as of July 2026.

The confirmed cases: what regulators have proven

The Federal Trade Commission has pursued two distinct lines of enforcement involving covert audio collection or the marketing of it.

The most direct case targeted Support King, LLC, which operated a consumer surveillance app sold through SpyFone.com. According to the FTC’s case file, the app could turn on a device’s microphone and record surrounding audio without the phone owner’s knowledge. It also harvested location data, text messages, photos, and browsing history. The FTC banned Support King from the surveillance business entirely, ordered the company to delete all data it had collected, and required it to notify every person whose phone had been compromised.

SpyFone was not a mainstream app store download. It was stalkerware, typically installed by someone with physical access to the target’s phone, such as an abusive partner or a controlling employer. That distinction matters: the threat here was not a popular app secretly going rogue but a purpose-built surveillance tool sold to people who wanted to spy on someone else.

A separate enforcement action, announced in May 2025, targeted Cox Media Group and two partner firms, including 1010 Digital Works LLC. The companies marketed an “Active Listening” product to advertisers, claiming it used AI to detect conversations through smart-device microphones and serve targeted ads based on what people said aloud. The FTC’s settlement required the three firms to pay nearly $1 million, but the charge was deception, not surveillance. The agency found the product never actually listened through anyone’s microphone. The companies had sold advertisers on a capability that did not exist.

The full docket for 1010 Digital Works lays out how supplier and reseller relationships allowed the misleading product to reach the market, even though no single company controlled the entire technology stack.

Both cases caused real harm. One proved that a commercial product activated phone microphones without consent. The other showed that companies believed they could profit from promising advertisers that kind of access, which signals market demand for exactly the surveillance consumers fear most.

The seven app categories most likely to access your microphone

No public regulatory document, independent security audit, or device telemetry dataset identifies a neat list of seven specific apps currently recording audio in the background. Consumer tech coverage and social media posts frequently circulate such lists, but they tend to rely on anecdotal evidence (“I talked about shoes and then saw a shoe ad”) rather than forensic proof.

What security researchers and platform permission data do show is that certain categories of apps request microphone access far more often than their core function requires. These are the seven types that deserve the most scrutiny:

1. Stalkerware and monitoring apps (e.g., SpyFone, mSpy, FlexiSpy). Purpose-built to record audio, track location, and harvest messages. Often installed by someone else on your device. The FTC’s SpyFone case confirms this category’s capabilities.
2. Social media apps (e.g., Facebook, Instagram, TikTok, Snapchat). These request microphone access for video recording, voice messages, and live streaming. A widely cited 2018 Northeastern University study tested over 17,000 Android apps, including Facebook, and found no evidence they secretly activated the microphone. However, the study did find apps that recorded screen activity and sent it to third parties, and microphone permissions remain active by default once granted.
3. Voice assistant and smart-speaker companion apps (e.g., Google Assistant, Amazon Alexa, Siri). These are designed to listen for wake words and process voice commands. Audio snippets have been reviewed by human contractors at all three major companies, a practice that drew public backlash and policy changes starting in 2019.
4. Free VPN and “security” apps. Some free VPN apps have been found to request permissions far beyond what a VPN needs, including microphone access. Their business models often depend on data collection rather than subscription revenue.
5. Flashlight, calculator, and simple utility apps. Any basic tool that asks for microphone permission is a red flag. A flashlight app has no legitimate reason to access your mic. These have historically been vectors for adware and spyware on Android.
6. Free games with aggressive ad networks. Some mobile games bundle third-party advertising SDKs that request broad permissions, including microphone access, to build richer user profiles for ad targeting.
7. Parental control and employee monitoring apps. Like stalkerware, these are designed to monitor device activity. Legitimate versions require the phone owner’s informed consent, but the line between “monitoring” and “surveillance” depends entirely on whether the person being tracked knows and agrees.

The common thread is not that all of these apps are secretly recording you right now. It is that all of them either request microphone access or have a business incentive to collect audio data, and once permission is granted, the technical barrier to misuse drops significantly.

Why targeted ads feel like eavesdropping (even when they are not)

The experience of mentioning a product out loud and then seeing an ad for it is so common that it fuels persistent belief in phone-mic surveillance. But the advertising industry has tools that can produce that effect without ever hearing your voice.

Location data can show that you visited a pet store. Purchase records from loyalty cards and linked payment methods can show what you bought. Browsing history and search queries reveal what you have been researching. Social graph analysis can infer your interests from what your friends and family search for and buy. When all of those signals converge, an ad platform can predict what you are likely to want with unsettling accuracy.

That does not mean covert audio collection never happens. The SpyFone case proves it has. But the Northeastern University research and the FTC’s finding that Cox Media Group’s “Active Listening” product never actually worked both suggest that, for mainstream apps, the surveillance most people fear is less common than the data-driven prediction engine they do not fully understand.

How to shut off microphone access on iPhone

Apple introduced per-app microphone permissions in iOS 14 and has tightened controls in every release since. Here is how to audit and revoke access:

Review all apps with microphone permission:

• Open Settings.
• Tap Privacy & Security.
• Tap Microphone.
• You will see a list of every app that has requested mic access. Toggle off any app that does not need it. If you are unsure, turn it off. The app will ask again the next time it tries to use the mic, and you can decide in context.

Watch for the orange dot: Starting with iOS 14, a small orange dot appears in the upper-right corner of the screen whenever an app is using the microphone. A green dot indicates camera use. If you see the orange dot and you are not on a call, recording a voice memo, or using a voice assistant, open Control Center (swipe down from the top-right corner) to see which app triggered it.

Check for Siri and Dictation:

• Go to Settings > Siri & Search (or Settings > Apple Intelligence & Siri on iOS 18.x).
• If you do not use Siri, disable Listen for “Hey Siri” and Press Side Button for Siri.
• To disable dictation, go to Settings > General > Keyboard and toggle off Enable Dictation.

Delete suspicious apps: If you find an app you do not recognize or did not install yourself, delete it immediately. Stalkerware is sometimes disguised under generic names like “System Service” or “Phone Monitor.”

How to shut off microphone access on Android

Android introduced a centralized permission manager in Android 10 and added real-time mic and camera indicators in Android 12. Steps may vary slightly by manufacturer (Samsung, Pixel, OnePlus), but the core path is consistent:

Review all apps with microphone permission:

• Open Settings.
• Tap Privacy (or Security & Privacy on some devices).
• Tap Permission Manager.
• Tap Microphone.
• You will see apps sorted into “Allowed all the time,” “Allowed only while in use,” and “Not allowed.” Move any app that does not need constant mic access to “Not allowed” or “Ask every time.”

Watch for the green indicator: On Android 12 and later, a small green icon appears in the status bar when the microphone or camera is active. Tap it to see which app is using the sensor. If the access is unexpected, revoke the permission immediately.

Disable Google Assistant listening:

• Open the Google app.
• Tap your profile icon, then Settings > Google Assistant > General.
• Toggle off Google Assistant if you do not use it, or go to Hey Google & Voice Match and disable Hey Google to stop always-on listening.

Check for sideloaded apps: Go to Settings > Apps and sort by “All apps.” Look for anything you do not recognize. Stalkerware on Android often hides behind names like “Update Service” or has no visible icon. If you find something suspicious, check its permissions. If it has microphone, camera, and location access and you did not install it, remove it and consider running a scan with a reputable mobile security app like Malwarebytes or Lookout.

Use the global mic kill switch: On Android 12 and later, you can disable the microphone entirely from Quick Settings. Swipe down from the top of the screen, look for the Microphone access tile, and tap it to block all apps from using the mic. You can re-enable it when you need to make a call or record audio.

What to do if you suspect active surveillance

If you believe someone has installed monitoring software on your phone, whether a partner, employer, or unknown party, the situation goes beyond app permissions.

• Do not alert the person who may have installed it. In domestic abuse situations, confronting a controlling partner about surveillance software can escalate danger. The National Domestic Violence Hotline (1-800-799-7233) can help you plan safe next steps.
• Document what you find. Take screenshots of suspicious apps and their permissions before removing anything. This evidence may be useful if you pursue legal action.
• Factory reset as a last resort. A full factory reset removes stalkerware, but it also erases your data. Back up photos and contacts to a secure account the other person cannot access before resetting.
• File an FTC complaint. If you believe an app collected your data without consent, you can report it at reportfraud.ftc.gov.

Microphone access is a privilege, not a default

The FTC’s enforcement record confirms that covert audio monitoring is not hypothetical. At least one commercial product activated phone microphones without consent, and at least one group of companies tried to build an advertising business around the promise of doing the same. Both were caught. Neither outcome should make anyone comfortable.

The practical defense is straightforward: treat microphone permission as something every app must earn, not something you grant on autopilot during installation. Audit your permissions today, watch for the indicator dots, and remove anything you cannot explain. The regulatory system catches some offenders after the fact. Your phone’s settings are the only tool that works before the fact.

More from Morning Overview

*This article was researched with the help of AI, with human editors creating the final content.