More Than 50 Arrests As Brazil Cracks Down On Phishing Trojan Authors

According to media reports, federal police in Brazil have arrested more than 50 people for stealing money from internet bank accounts with a series of phishing Trojan horses. Allegedly, approximately USD 30 million is believed to have been stolen from online banking customers.

The arrests of more than 50 suspected hackers took place across four states in the north of Brazil, with most of those apprehended said to be under the age of 25.

Banks targeted by the Trojan horses included Banco do Brasil, Bradesco, Caixa Economica Federal, HSBC, Itau, and Unibanco.

“Hackers and virus writers in Brazil seized upon the opportunity to make significant amounts of money by writing these Trojan horses,” said Graham Cluley, senior technology consultant for Sophos. “The Trojans would lurk in the background, waiting for innocent users to enter their bank login details and then secretly pass them back to the hackers. The Brazilian authorities should be congratulated for taking swift action against this activity – fifty arrests give some idea of the huge scale of this kind of organised internet crime.”

Virus experts at Sophos warned Brazilian computer users earlier this year of the increasing trend of Trojan horses being written specifically to target customers of Brazil’s online bank websites. Even this week, Sophos has added detection for several new Brazilian Trojans. Once a computer is infected with one of the Trojans, internet activity is monitored, and if it is determined that the computer user is visiting one of a number of Brazilian banking websites, a fake login page is displayed and the confidential data emailed back to the hacker’s email address.

“All computer users should be running up-to-date anti-virus as well as protecting their PC with a firewall. This, combined with the safe computing practice of exercising caution over what you choose to run on your computer, can dramatically reduce the risks of these kind of attacks,” continued Cluley.