Ice IX steals user IDs, passwords and other memorable information such as dates of birth and account balances. With stolen numbers, fraudsters can reroute transaction verification from the bank, bypassing two-factor authentication. The attack, discovered by Trusteer researchers, so far has been found targeting online users in the U.S. and UK. Call-forwarding from victims’ phone calls to criminals’ phones has been around for a couple of years, security experts say. Call centers typically validate customers by asking basic information – all easily stolen.”]
Source: https://www.inforisktoday.com/banking-malware-finds-new-weakness-a-4473