Pix is one of the most popular payment platforms in Brazil and, considering that it was created by the Central Bank of Brazil, it is considered a reliable service for carrying out this type of operations. However, Folha de S. Paulo reports that there is now a threat capable of defrauding Android cell phone users.
It's called PixPirate and was initially identified at the end of 2022 by the cybersecurity company Cleafy. This is a banking Trojan that is capable of hiding itself on Android cell phones in order to divert payments. After the user points the camera at a QR code – as is done in Angola with MultiCaixa Express – this value is diverted to another destination chosen by the hackers.
But how does this 'trojan' spread? Apparently, PixPirate can infect Android cell phones via WhatsApp messages or ordinary SMS with a URL code. Note, however, that to run the risk of being infected you must click on that URL code – therefore we advise you to avoid doing so if you have received it from an unknown sender.
By infecting a cell phone, PixPirate is capable of installing and uninstalling other apps, recording prized keystrokes (in order to collect passwords and other authentication codes), accessing accounts, reading other people's messages and also unlocking the security system. protection from Google.
It is worth remembering that, even though the vast majority of cases have only been detected in Brazil, this type of software 'travels' quickly and, taking into account that it is constantly changing and adapting, it may well become compatible with other payment systems.
