Online Banking 
Enroll in Online Banking

Protecting Against Fraud

Roaming Mantis Malware Making Attacks on Android Devices

May 2, 2018 by Nicole Williams

Roaming Mantis is a new malware that is designed by hackers in attempt to steal information including banking details specifically from users who have Android devices.  While the cyber-attack is more popular in Asia, there is also an English version that is starting to appear in America. 

How Does It Work?

According to research from experts at Kaspersky Lab, the malware preys on vulnerable wireless routers by changing the way they direct/connect users to websites. For example, when users try to access a legitimate website through a compromised router, they are redirected instead to a website that appears similar prompting them to update their version of Google Chrome. However, instead of installing a newer version of Chrome, the Roaming Mantis malware is installed onto the user’s Android device.  
The Roaming Mantis malware will then ask for numerous authorization permissions as it is being installed on the user’s Android device.  Permissions may include the ability to appear on top of other applications, access to user’s contact list, authorization to make phone calls and send/receive SMS messages, record audio, and collect account information.  

What Happens Next?

Once the user gives authorization access by pressing the enter/ok button, the device will display a fake version of a Google website hosted on a temporary web server. The fake page will prompt the user for their Gmail ID, as well as his or her full name and date of birth. With access to one’s Gmail ID, full name, and date of birth, fraudsters have enough information to start compromising banking information. 
While most financial institutions, including SCCU, secure their online banking portals with layered security or Multi-Factor Authentication, the Roaming Mantis malware is capable of collecting the information needed via SMS messages to bypass the Multi-Factor Authentication process. 

How to Protect Your Android Devices

We advise our members to never install applications or updates outside of the Google Play store, and to never give authorization permissions to unsecure applications or any other applications that they are unsure about. 
Also, pay close attention to the items/apps for which an update is requesting authorization permissions. Chances are if the application is asking for permission to an item that raises an eyebrow, then it should not be installed.
Last but not least, we advise members to apply extreme caution when connecting to public, unsecured Wi-Fi networks. Remember to visit our Fraud Center to find out more tips that will help you stay alert against fraud.

Nicole Williams
Director of Information Technology



  • SCCU Routing Number: 263177903

Space Coast Credit Union membership is open to all who work or live in Brevard, Broward, Flagler, Indian River, Martin, Miami-Dade, Monroe, Orange, Osceola, Palm Beach, Seminole, St. Johns, St. Lucie, or Volusia Counties in Florida.

  • Brevard: 321-752-2222
  • Broward: 954-704-5000
  • Miami-Dade: 305-882-5000
  • All Other Areas: 800-447-7228

*APR = Annual Percentage Rate. ^APY = Annual Percentage Yield.

Space Coast Credit Union (SCCU) © 2015



You are being directed to, a website not operated by SCCU. SCCU is not responsible for the content of the alternate website. SCCU does not represent either the third party or the member if the two parties enter into a transaction. Privacy and security policies may differ from those practiced by SCCU.

Would you like to continue?


Member Rewards

Member Rewards is an exclusive Space Coast Credit Union program that provides benefits such as free or discounted services based on your level of participation in the credit union.

  • Gold members may order one FREE box of SCCU logo checks per year.
  • Platinum members may order unlimited FREE boxes of SCCU Exclusive Style checks (one box at a time).
Learn more about the Member Rewards program.