JanelaRAT Malware Targets Latin American Banks with 14,739 Attacks in Brazil in 2025
Summary
A malware strain named JanelaRAT, a derivative of BX RAT, has been actively targeting banks in Latin America, with a significant number of attacks recorded in Brazil in 2025. This malware is designed to steal financial and cryptocurrency data, capture user inputs like mouse movements and keystrokes, take screenshots, and collect system metadata.
IFF Assessment
JanelaRAT's capabilities for stealing financial data and monitoring user activity pose a direct threat to financial institutions and their customers, representing bad news for defenders.
Defender Context
Defenders should remain vigilant against the JanelaRAT malware and similar threats targeting the financial sector. This incident highlights the ongoing risks of sophisticated banking trojans and the importance of robust endpoint detection and response (EDR) solutions, regular security awareness training for employees, and timely patching of all systems.