TrickMo is being currently deployed against TrickBot victims in Germany, researchers say that it can be used to target any bank or region and they expect to see frequent changes and updates in the future. TrickMo s most significant novelty is an app-recording feature, which gives it the ability to overcome the newer pushTAN app validations used by German banks, they said. TrickBot already has various. data-stealing capabilities, so why would it. it deploy an additional. piece of. security with these features? TrickMo.
Source: https://threatpost.com/trickbot-app-bypasses-non-sms-banking-2fa/154080/