Scan and Deliver: ‘GoPIX’ Malware Targets Brazil’s Instant Payment System
- High usage of Brazil’s instant payment system, PIX, has made it attractive to cybercriminals employing a new malware, GoPIX.
- Cybersecurity firm Kaspersky has tracked an active campaign since December 2022, characterizing the attacks as originating from malicious ads.
- Vulnerabilities appear when users search for “WhatsApp web” on search engines.
GoPIX Malware: A Hasty Heist
Pix it or leave it. Brazil’s instant payment system, PIX, seems to have attracted the darker side of technology owing to its soaring popularity. The system has become a goldmine for hackers keen on making illicit gains using a new malware known as GoPIX, adding a new element to the mix: catch me if you can.
Kaspersky onto GoPIX’s Game
Kaspersky has been like a dog with a bone, tracking this underhanded campaign since December 2022. Much like mystery meat in a cafeteria, the source of these attacks might not look dangerous: they’re coming from packaged up, attractively served malicious ads. Is it a bird? Is it a plane? No, it’s a click-bait add preying on internet users.
WhatsApp with the Search Results?
Now here comes the kicker. These attacks find a perfect playing field when potential victims search for “WhatsApp web” on search engines. It’s like uninvited guests showing up just when you’re trying to circulate the party snacks. Suddenly, your party takes a sinister turn.
Summing It Up
Evidently, the digital world’s miscreants have found a new playground in Brazil’s instant payment system, PIX, deploying an innovative malware, GoPIX. Kaspersky, in its role as the appointed ‘Sheriff’, has been onto these cunning schemes since December 2022, flagging the systematic exploitation of search engine queries related to “WhatsApp web”. Like a modern twist on an old adage: hell hath no fury like a cybercriminal scorned.