Create Profile

Creating your profile will enable you to submit photos and stories to get published on News24.

Please provide a username for your profile page:

This username must be unique, cannot be edited and will be used in the URL to your profile page across the entire 24.com network.

Facebook Sign-In

Hi News addict,

Join the News24 Community to be involved in breaking the news.

Log in with Facebook to comment and personalise news, weather and listings.


Cyber crooks may have stolen billions in Brazil

03 July 2014, 13:04

Washington - Cyber criminals may have stolen billions of dollars from a popular Brazilian online payment system using malicious software that caused the funds to be sent to accounts controlled by fraudsters, according to a research report released on Wednesday.

EMC's RSA Security said cyber criminals have been using software known as Eupuds to steal funds from customers of Brazil's widely used Boleto Bancário payment system, redirecting them to fraudulent accounts.

RSA estimates that fraudsters sought to siphon off as much as 8.6 billion reais ($3.9bn) from more than 192 000 accounts, though the actual amount stolen could be less because researchers were unable to confirm which Boletos were actually paid out.

They said they believe the operation is still ongoing and have offered to help Brazilian authorities crack down on the operation, which may have begun as early as late 2012.

RSA said it met with members of Febraban, the group that represents the banking industry in Brazil.


A representative for Febraban declined to comment on the report, saying the group was not granted access to its content.

The malware currently only targets Boleto transactions processed on PCs running Microsoft's Windows software.

"We're concerned that the attackers will be able to develop the malware for other platforms," said Jason Rader, director of cyber threat intelligence with RSA.

"These attackers have online and offline techniques, and they've understood vulnerabilities in these operating systems."

Brazilians use Boletos to process online payments for items including utility bills, rent, online purchases and small business transactions.

When a computer infected with the Eupuds software is used to process a Boleto payment, it is very difficult for the customer to detect that the account has been modified because the validation screens often display the original inputs to make the fraudulent Boleto look authentic, according to RSA.

- Reuters


Read News24’s Comments Policy

Comment on this story
Comments have been closed for this article.

Read more from our Users

Submitted by
Jayne Zack
I am in ODM to stay, Busia Depu...

Busia Deputy Governor Kizito Wangalwa told Deputy President William on the face that he was in the Orange Democratic Movement to stay. Read more...

Boda Boda operators in Bahati rai...

Motorbike Boda Boda operators from Bahati Sub county on Tuesday took to the streets of Nakuru’s CBD lamenting over what they term is harassment by patrol police officers in the area. Read more...

Submitted by
Gabriel Ngallah
Human Rights activist lives in fe...

The Human rights fraternity in Mombasa is currently living in fear after the home of one of the vocal human rights champion was invaded on Monday night. Read more...

Submitted by
kel wesh
Poisonous milk powder siezed by K...

The Kenya Revenue Authority has seized two containers with illegal milk powder which had been declared as gypsum board at Mombasa port. Read more...

Submitted by
William Korir
Be ready for protests, Raila warn...

Expect protests if meddling with Auditor General continues, Raila Odinga has said. Read more...

Submitted by
Kenya says will return to interna...

Kenya will return to international markets to borrow when it feels the time is right, National Treasury Cabinet Secretary Henry Rotich said on Tuesday. Read more...