Archetyp Links

Despite the severity, the sinqia ensures that the central PIX infrastructure was not compromised - Photo: Illustrative |Social media A cyber attack aimed at Sinqia, a company that integrates banks with the Pix system, last Friday, 29, resulted in the deviation of about $ 710 million in unauthorized transactions. According to a report by Evertec, Sinqia controller, sent to the US Securities Commission (SEC), the most impacted banks were HSBC, with approximately R $ 670 million diverted, and Fintech Artta, with R $ 41 million. All about economics firsthand!Enter the WhatsApp channel. The Central Bank (BC) did not immediately comment on the report, but according to information gathered by the G1, about R $ 589 million was blocked, equivalent to 83% of the total subtracted. Despite gravity, Sinqia ensures that "the central Pix infrastructure has not been compromised and continues to operate normally."The invasion has reached only the servers of the company that connect to the BC.As soon as it noticed the attempted undue access, the monetary authority suspended Sinqia's connection to the national financial system network, preventing other institutions from being affected. In the document sent to the SEC, Evertec details that, when identifying the suspicious activity, immediately suspected transaction processing and called external external cyber security experts, following its incident response protocol."Part of this amount [R $ 710 million] has been recovered and additional recovery efforts are underway," says the company, noting that affected transactions involved operations between companies (B2B). How the attack occurred Preliminary investigations point out that hackers have used credentials from legitimate information technology suppliers (IT) to insert fraudulent transactions into the Sinqia Pix environment, especially affecting HSBC and Artta. "Sinqia has ended access to these credentials," confirms the company's report. The episode resembles another significant attack recorded in July, when C&M Software (CMSW), responsible for connecting smaller banks to the Pix, had its infrastructures invaded using customer credentials.At the time, the Civil Police tracked access to João Nazareno Roque, former CMSW employee, who would have provided his credentials to facilitate criminal action. Reactions of affected institutions HSBC reported that no customer accounts have been compromised and "measures have been taken to block suspicious transactions." Already the Artta clarified that the attack reached only accounts maintained with the Central Bank for interbank settlement, without affecting Fintech customers."There was no attack on the artta environment or the accounts of our customers. The accounts involved are maintained with the Central Bank and used exclusively for interbank liquidation," said the company. Sinqia positioning Sinqia stated that “on August 29, Sinqia detected suspicious activity in the Pix environment. Our team acted quickly and started an investigation to determine the cause of the incident. We are working with the support of the best forensic experts in this. We are already in contact with affected customers, who include a limited number of financial institutions.” The company also pointed out that “at this time, we find that the incident is limited only to the Pix environment. There is no evidence of suspicious activity in any other Sinqia system other than Pix and this problem affects only Sinqia in Brazil. In addition, we have no indication that any personal data has been compromised.” Finally, on the measures adopted, Sinqia said: “While our investigation is still underway, we put into practice a detailed plan to achieve a complete restoration. First, we isolate the pix environment of all other Sinqia systems and proactively disconnect it from the Central Bank while we conducted our analysis.”