JanelaRAT Malware Targets Latin American Banks with 14,739 Attacks in Brazil in 2025

JanelaRAT, a modified variant of BX RAT, has emerged as a significant threat targeting banks and financial institutions in Latin America, particularly Brazil and Mexico. The malware has conducted 14,739 attacks in Brazil alone in 2025. JanelaRAT employs multiple data exfiltration techniques including keystroke logging, mouse input tracking, screenshot capture, and system metadata collection. Its primary objectives include stealing financial and cryptocurrency data associated with specific financial entities. Organizations in the Latin American banking sector should implement robust endpoint detection solutions, enforce multi-factor authentication, conduct regular security awareness training, and monitor for Indicators of Compromise related to this RAT family to mitigate the risk of financial fraud and data theft.

Banks and financial institutions in Latin American countries like Brazil and Mexico have continued to be the target of a malware family called JanelaRAT. A modified version of BX RAT, JanelaRAT is known to steal financial and cryptocurrency data associated with specific financial entities, as well as track mouse inputs, log keystrokes, take screenshots, and collect system metadata. "One of the

JanelaRAT, a modified variant of BX RAT, has emerged as a significant threat targeting banks and financial institutions in Latin America, particularly Brazil and Mexico. The malware has conducted 14,739 attacks in Brazil alone in 2025. JanelaRAT employs multiple data exfiltration techniques including keystroke logging, mouse input tracking, screenshot capture, and system metadata collection. Its primary objectives include stealing financial and cryptocurrency data associated with specific financial entities. Organizations in the Latin American banking sector should implement robust endpoint detection solutions, enforce multi-factor authentication, conduct regular security awareness training, and monitor for Indicators of Compromise related to this RAT family to mitigate the risk of financial fraud and data theft. Banks and financial institutions in Latin American countries like Brazil and Mexico have continued to be the target of a malware family called JanelaRAT. A modified version of BX RAT, JanelaRAT is known to steal financial and cryptocurrency data associated with specific financial entities, as well as track mouse inputs, log keystrokes, take screenshots, and collect system metadata. "One of the Banks and financial institutions in Latin American countries like Brazil and Mexico have continued to be the target of a malware family called JanelaRAT. A modified version of BX RAT, JanelaRAT is known to steal financial and cryptocurrency data associated with specific financial entities, as well as track mouse inputs, log keystrokes, take screenshots, and collect system metadata. "One of the