Brazil: Bolware malware threatens Boleto Bancario transactions

Monday 7 July 2014 14:03 CET | News

Brazilians that use the Boleto Bancário payment system have been prone to electronic theft of up to USD 3.75 billion by a piece of malware called ‘Bolware’.

According to security company RSA Security, the crime ring wielding the Bolware (or ‘Boleto’ or ‘Eupuds’) man-in-the-browser (MiTB) malware have attacked 30 Brazilian banks since 2012, botting 192,227 computers and stealing 83,506 user credentials.

The company connects the attack to 8,095 unique fraudulent Boleto accounts responsible for 495,753 potentially fraudulent transactions.

Boleto is a money order payment system that can be used online. A person receives a Boleto invoice and uses the details on it to transfer money from themselves to the payee.

The company concludes that Brazilian banks should better defend themselves using blacklisting to monitor the addresses used by malicious IPs. One might add that there should be some kind of fraud detection in play.

Free Headlines in your E-mail

Every day we send out a free e-mail with the most important headlines of the last 24 hours.

Subscribe now

Keywords: Brazil, Bolware, Boleto Bancario, web fraud, security, online transactions
Categories: Fraud & Financial Crime
Countries: World
This article is part of category

Fraud & Financial Crime

Industry Events