JanelaRAT Malware Targets Latin American Banks with 14,739 Attacks in Brazil in 2025

JanelaRAT, a modified variant of the BX RAT trojan, has emerged as a significant threat to Latin American banking institutions, particularly in Brazil and Mexico. In 2025 alone, security researchers documented 14,739 attacks targeting financial entities in Brazil. The malware possesses extensive espionage capabilities including credential harvesting, keystroke logging, mouse input tracking, screenshot capture, and cryptocurrency wallet theft. JanelaRAT specifically targets data associated with financial institutions and digital currency holdings. Organizations in the targeted regions should implement robust endpoint detection solutions, enforce multi-factor authentication, conduct regular security awareness training, and monitor for RAT indicators of compromise. Proactive threat hunting and network traffic analysis are recommended to detect this sophisticated banking trojan.

Banks and financial institutions in Latin American countries like Brazil and Mexico have continued to be the target of a malware family called JanelaRAT. A modified version of BX RAT, JanelaRAT is known to steal financial and cryptocurrency data associated with specific financial entities, as well as track mouse inputs, log keystrokes, take screenshots, and collect system metadata. "One of the

JanelaRAT, a modified variant of the BX RAT trojan, has emerged as a significant threat to Latin American banking institutions, particularly in Brazil and Mexico. In 2025 alone, security researchers documented 14,739 attacks targeting financial entities in Brazil. The malware possesses extensive espionage capabilities including credential harvesting, keystroke logging, mouse input tracking, screenshot capture, and cryptocurrency wallet theft. JanelaRAT specifically targets data associated with financial institutions and digital currency holdings. Organizations in the targeted regions should implement robust endpoint detection solutions, enforce multi-factor authentication, conduct regular security awareness training, and monitor for RAT indicators of compromise. Proactive threat hunting and network traffic analysis are recommended to detect this sophisticated banking trojan. Banks and financial institutions in Latin American countries like Brazil and Mexico have continued to be the target of a malware family called JanelaRAT. A modified version of BX RAT, JanelaRAT is known to steal financial and cryptocurrency data associated with specific financial entities, as well as track mouse inputs, log keystrokes, take screenshots, and collect system metadata. "One of the Banks and financial institutions in Latin American countries like Brazil and Mexico have continued to be the target of a malware family called JanelaRAT. A modified version of BX RAT, JanelaRAT is known to steal financial and cryptocurrency data associated with specific financial entities, as well as track mouse inputs, log keystrokes, take screenshots, and collect system metadata. "One of the