Monokle is a custom-built Android remote access trojan (RAT) used to conduct surveillance on select individuals. The trojan has the ability to log keystrokes, take photos and videos, retrieve history of apps - including web browsers, social media services, and messengers - track the location of the user, among others. Monokle can install trusted certificates, allowing it to gain root access. The trojan is able toconduct this activity by exploiting accessibility services.

Reporting and Technical Details

  • Lookout provides information on Monokle in its report.

  • July 2019: This Android malware can take photos and videos and spy on your app history. (ZDNet)