Brazil Fights Sophisticated Malware Campaign Targeting Windows Users via WhatsApp
Brazil is grappling with a sophisticated malware campaign, dubbed Sorvepotel, which has infected computers nationwide. The attack, primarily targeting Windows users, exploits WhatsApp to spread malicious software, stealing sensitive data from financial institutions and crypto exchanges.
The campaign, concentrated in Brazil with 457 out of 477 recorded infections, focuses on government and public service sectors. The malware, once installed, targets WhatsApp Web, sending malicious ZIP attachments to all contacts and group chats if the WhatsApp web is active on the infected machine.
The goal appears to be delivering more malware, with two identified payloads: Maverick.StageTwo and Maverick.Agent. These are capable of stealing credentials and displaying fake overlay windows. The attackers aim to gather banking information.
This isn't Brazil's first brush with cyber incidents. Earlier this week, a software company employee was arrested for helping steal over $100 million through Brazil's instant payment system, PIX. Additionally, over 5 million reals were stolen from municipal bank accounts in Monte Sião in recent months.
The Sorvepotel malware campaign underscores the growing threat of cyber attacks in Brazil. With its focus on enterprises and use of social engineering techniques, it highlights the need for robust cybersecurity measures. Authorities are investigating the attacks, and users are urged to be cautious of suspicious WhatsApp messages.
Read also:
- U.S. CBP's Operation Plaza Spike Boosts Fentanyl Seizures Along Arizona-Mexico Border
- Regensburg Court Sentences Pizza Delivery Owner for Illegal Employment, Tax Evasion
- Tesla's EV Market Share Plummets in Europe, US Competition Intensifies
- Catastrophe at a U.S. Steel facility in Pennsylvania results in the loss of two lives. crucial details unveiled
