05.07.2025 15:30

A significant cyberattack targeting C&M Software, a crucial service provider linking Brazil's Central Bank to its affiliated financial institutions, resulted in the theft of 800 million Brazilian reais (approximately $140 million) on Wednesday. The heist affected six institutions, highlighting the vulnerability of centralized systems.

According to São Paulo-based news sources, the breach stemmed from an insider threat. A C&M employee allegedly sold their login credentials for a relatively modest sum of around $2,700, granting malicious actors access to the software and subsequently the reserve accounts of connected banks. This underscores the critical role of insider security and the devastating consequences of compromised employee access.

Onchain detective ZachXBT tracked a portion of the stolen funds – an estimated $30 million to $40 million – being converted into Bitcoin (BTC), Ether (ETH), and USDt (USDT). These cryptocurrencies were subsequently laundered through various Latin American exchanges and over-the-counter (OTC) trading platforms, demonstrating the agility and sophistication of modern money laundering techniques. Brazilian authorities have already made an arrest, detaining a C&M employee suspected of involvement in the credential sale.

This incident serves as a stark reminder of the escalating cybersecurity risks facing centralized systems. Single points of failure, such as those exposed in this attack, can lead to catastrophic financial losses and the exposure of sensitive data. The increasing sophistication of cyberattacks, often aided by artificial intelligence tools, further exacerbates this vulnerability. Indeed, data from sources like Chainalysis reveals a concerning trend of increased attacks on centralized services throughout 2024, with a notable spike in hacks against centralized crypto exchanges (CEXs) during the final two quarters of the year.

Eran Barak, CEO of Shielded Technologies, a developer of blockchain-based data protection technology, emphasized the growing need for enhanced privacy tools to combat AI-assisted hacking. He highlighted the lucrative nature of targeting centralized systems for cybercriminals, who reap massive rewards from successful attacks. The increasing use of AI in malicious activities necessitates a proactive and robust response from both institutions and cybersecurity experts alike.