Why Is It Called 'Trojan Horse'? — The Origin of the Term

A gift left at your gate, wooden, beautiful, offered in surrender. You wheel it inside your walls, celebrate your victory, and fall asleep. In the dark, Greek soldiers spill out of the horse’s hollow belly and open the city gates. That ten-year war ends not with a battering ram, but with a box. The Trojan Horse strategy — deception through disguise — is older than writing. And in computing, it’s more alive than ever.

The Story

In Homer’s Odyssey and Virgil’s Aeneid, the Trojan Horse was a massive wooden construction left by the Greek army as a supposed peace offering after a pretended retreat. The Trojans, believing they had won, brought the horse inside their fortified city. That night, Greek soldiers emerged from its hollow interior, opened the gates for the returning army, and sacked Troy.

The first computer “Trojan horse” appeared in 1975. Programmer John Walker wrote a game called ANIMAL that asked users twenty questions to guess an animal. On the surface, it was a harmless guessing game. But ANIMAL also carried a hidden payload: it would copy itself to every directory it could access, spreading across the system. Walker called it “the first computer virus” — though by modern definitions, it was actually a Trojan, because it did something the user never agreed to inside a seemingly innocent program.

The term “Trojan horse” entered computing vocabulary through military and espionage circles before becoming mainstream in the 1980s with the rise of bulletin board systems (BBS). Users would download what appeared to be useful utilities or games — only to find their files corrupted or their passwords stolen.

How It Evolved

The Trojan horse taught security researchers a critical lesson: the most dangerous attack doesn’t look like an attack. Unlike viruses and worms, which spread autonomously, a Trojan relies entirely on deception. The user must willingly execute it — but they don’t know what they’re really running.

This distinction matters:

• Virus: Attaches itself to a legitimate program and replicates.
• Worm: Spreads across networks on its own.
• Trojan: Disguises itself as something desirable but acts maliciously.

Trojans became the dominant malware vector because they exploit human psychology rather than technical vulnerabilities. You don’t need to find a buffer overflow — you just need to make a user click a button that says “Free Gift.”

Some infamous Trojans:

• Emotet: Started as a banking Trojan, evolved into a malware delivery platform. Disguised as invoices, shipping notifications, and password-protected Word documents.
• Zeus: A 2007 banking Trojan that stole millions by intercepting browser forms. Clean, professional-looking login screens that weren’t what they seemed.
• Back Orifice: A 1998 “remote administration tool” by the hacker group Cult of the Dead Cow — named after Microsoft’s BackOffice, designed to run on Windows with the user’s full consent. Except the consent part was the trick.

Did You Know?

The Trojan Horse metaphor works on two levels. First, the obvious deception of appearance. But second, the horse was a gift to Athena, goddess of wisdom. The Trojans couldn’t resist pulling it inside their own walls — just as modern users can’t resist a “free shipping” notification from their own bank.

John Walker, the ANIMAL creator, went on to co-found Autodesk, the company behind AutoCAD. His “first virus” is still debated — some argue it wasn’t self-replicating enough to qualify — but it undeniably pioneered the malicious gift-in-disguise technique.

Trojans account for roughly 70% of all malware, according to multiple security reports. The oldest trick in the book is still the most effective.

FAQ

Related Etymologies