From en.secnews.gr
The trojan TrickBot is one of the most active and widespread malware. According to investigators, the hackers have improved trojan, to be able to perform « YES swapping attacks .”
The new version of TrickBot can steal login credentials and PIN codes for accounts of Sprint, T-Mobile and Verizon Wireless.
The TrickBot collects data , which enable hackers to perform swapping SIM attack , ie to carry the phone number of a victim in a SIM card control themselves.
Through this attack, hackers can bypass the multiple factors of authentication solutions based on SMS, and proceed to reset codes to access bank accounts, accounts E-mail or cryptocurrency exchange portals victims.