New Android Banking Trojan Herodotus Mimics Human Behavior

Cybersecurity researchers have uncovered a new Android banking trojan called Herodotus, which mimics human behavior to evade detection. The malware, distributed via SMS phishing, targets financial apps and cryptocurrency platforms. Herodotus introduces random delays in text input to appear human-like, making it harder for behavioral biometrics to detect fraud. The trojan is part of a malware-as-a-service model and is under active development, posing new challenges for banks and payment providers.

Latest mentioned: 10-28

Earliest mentioned: 10-28

Sources

gbhackers.com bleepingcomputer.com therecord.media thehackernews.com cybersum.net

Also Read

RedTiger Infostealer Targets Discord Users and Gamers

Attackers are using the open-source red-team tool RedTiger to build an infostealer that collects Discord account data, payment information, browser credentials, cryptocurrency wallet data, and game accounts. The malware, distributed through standalone binaries, scans for Discord and browser database files, extracts tokens, and intercepts API calls. It uploads stolen data to GoFile and sends the download link to the attacker via a Discord webhook. Users are advised to avoid downloading executables from unverified sources and enable MFA.

10-28Read more →