Cyber criminals, who targeted Brazil’s popular Boleto Bancário online payment system using malicious software, may have stolen billions of dollars. Brazilians routinely use Boletos to process online payments, including small business transactions.
US provider of IT storage hardware EMC Corp said its RSA Security unit reports that the criminals have been using software known as ‘Eupuds’ to steal funds from customers of the payment system, redirecting them to fraudulent accounts.
RSA estimates that fraudsters sought to siphon off as much as 8.6bn reais (BRL), equivalent to US$3.9bn from more than 192,000 accounts. However, the actual amount stolen could be less as researchers were unable to confirm which Boletos were actually paid out.
They believe the operation is still ongoing and have offered to assist Brazilian authorities in tracking down the perpetrators, who may have begun their operation more than 18 months ago. RSA said it met with members of Federação Brasileira de Bancos (Febraban), the group that represents Brazil’s banking industry.
The malware currently only targets Boleto transactions processed on PCs running Microsoft Corp’s Windows software.
“We’re concerned that the attackers will be able to develop the malware for other platforms,” said Jason Rader, director of cyber threat intelligence with RSA.
“These attackers have online and offline techniques, and they’ve understood vulnerabilities in these operating systems.”
GTNews asks Pugsley about what advice she would give to treasurers dealing with mergers and acquisitions, what the key challenges for her year ahead will be and how she is selecting a treasury management system (TMS).
The US money market fund reforms came into effect in 2016 and are already dramatically shaping US fund industry with investors flooding out of prime funds and into government securities. While the reforms are similar, they are not the same. GTNews interviews Yeng Bulter, global head of the cash business at State Street Global Advisors on the differences.
Tim de Knegt, strategic finance and treasury manager for the Port of Rotterdam, discusses how he is using blockchain, the challenges he will face in his role of treasury over the next 12 months and the advice he would give to someone starting out their career in treasury.
Due to the low interest rate environment and Basel III regulation many corporate treasurers, who may have in the past been very reliant on the banking sector to provide them with cash management solutions, have been forced to explore alternative options as banks have been refusing short dated cash deposits.