Brazil Central Bank Connector Hacked, $140 Million Stolen

C&M Software, the service provider linking Brazil Central Bank to local banks and financial institutions, suffered a significant security breach on Wednesday. The hack led to the theft of 800 million Brazilian reais (around $140 million) from six financial institutions connected to the central bank, in what is emerging as one of the country’s largest recent financial cyber incidents.

According to Brazilian outlet São Paulo, the breach reportedly occurred after a C&M employee sold their login credentials for around $2,700, providing the attackers with access to critical software systems. The stolen funds were taken from reserve accounts within the system and swiftly moved out, causing alarm among stakeholders and regulators monitoring financial infrastructure in Brazil.

Crypto Laundering Through LATAM Exchanges

Onchain investigator ZachXBT reported that between $30 million and $40 million of the stolen funds were converted into Bitcoin (BTC), Ether (ETH), and Tether (USDT). The attackers laundered these assets through various Latin American crypto exchanges and over-the-counter (OTC) desks, making fund recovery and tracing efforts significantly harder for authorities.

This incident underlines the vulnerabilities that centralized software systems face, particularly those managing financial flows at a national level

Centralized systems carry single points of failure that can result in significant data theft or financial loss if exploited, and the problem is only growing as hackers refine their techniques with the help of artificial intelligence tools and dark web marketplaces.

Calls for Privacy Tools and Decentralization Grow

Cybersecurity experts note a sharp rise in attacks on centralized crypto exchanges in late 2024, according to Chainalysis, as hackers increasingly target platforms with large asset pools and consolidated control points. Eran Barak, CEO of Shielded Technologies, emphasized the need for privacy-preserving tools to guard against advanced AI-assisted hacking attempts.

Barak argued that decentralized systems, particularly those leveraging zero-knowledge proofs (ZKPs), can reduce hackers’ incentives by requiring them to attack individual wallets rather than centralized vaults holding millions of credentials or billions in capital

“Their return on investment would be one record instead of millions, making these attacks far less attractive,” Barak explained.

As the investigation unfolds in Brazil, this incident reinforces the urgent need for stronger cybersecurity and privacy infrastructure in the global financial sector, particularly as attackers expand their focus on centralized systems that remain high-value targets for financial crime.

The post Brazil Central Bank Connector Hacked, $140 Million Stolen appeared first on TheCoinrise.com.