Brazil bank system collapses into chaos after insider sells login for just $2700 hackers vanish with $140M in crypto
A shocking breach at Brazil’s central bank service provider shows how a single employee’s betrayal opened the floodgates for one of Latin America’s biggest crypto heists.
In one of the most alarming cybersecurity breaches of 2025, hackers siphoned off 800 million Brazilian reais—roughly $140 million—from institutions connected to Brazil’s Central Bank, exploiting a devastating weakness in a centralized software provider.
At the heart of the breach was C&M Software, a firm responsible for linking the central bank to domestic financial institutions. According to local media outlet São Paulo, the digital doors were opened when an employee allegedly sold his login credentials for just $2,700, unknowingly setting off a digital heist of epic proportions.
LATEST: ZachXBT reports a $140M breach in Brazil after an insider sold access for $2.7K.
The recent ~$140M (R$ 800M) cyberattack on the Central Bank of Brazil services provider C&M Software is easily one of the most insane cases from this year.
Once inside C&M’s system, the threat actors quietly accessed reserve accounts and moved massive amounts of funds from six financial institutions. Cybercrime investigator ZachXBTlater confirmed that the attackers converted $30–$40 million of the stolen amount into Bitcoin (BTC), Ethereum (ETH), and USDt (USDT)—laundering it through Latin American crypto exchanges and over-the-counter (OTC) desks.
“This is the real danger of centralized systems — one crack and the entire structure collapses,” a cybersecurity expert noted in response to the hack.
Centralized security is becoming a ticking time bomb
The attack reignited fierce debates over the vulnerability of centralized systems, especially as artificial intelligence (AI) tools now accelerate the pace and sophistication of cyberattacks. Experts say centralized platforms—with millions of records or massive financial reserves—have become prime targets for criminals using AI-driven reconnaissance and infiltration tools.
“If you can steal access to one account and drain billions, that’s where cybercriminals will go. But decentralized systems break that reward loop,” Barak said.
Technologies like zero-knowledge proofs (ZKPs) are designed to eliminate such vulnerabilities. In decentralized systems, attackers must go after individual wallets instead of breaching a central repository—making large-scale attacks far less lucrative.
“Their return on investment would be one record instead of millions — not worth it. They are going to go elsewhere,” Barak explained.
According to @zachxbt a $140M cyberattack on Brazil Central Bank provider C&M Software led to massive crypto laundering via Latam OTCs. An insider sold access for just $2.7K.
The Brazil hack is not just a standalone case—it reflects a surge in attacks targeting centralized crypto exchanges and banking software over recent months. In fact, a Chainalysis report confirmed that hacks on centralized exchanges rose in Q3 and Q4 of 2024, largely due to AI-enhanced targeting tools and phishing techniques.
For Brazil, the attack is a major blow to its evolving financial infrastructure, and a stark warning to other nations relying on outdated or overly centralized models.
With the hackers still at large and the central bank’s reputation on the line, experts are calling for an urgent pivot to decentralized models, especially for storing capital and executing interbank transactions.
The $140 million breach underscores an unsettling truth: In the age of digital finance, a $2,700 password may be all that stands between order and chaos.
PayPal Breach Shock: Six Months of Undetected Access—Refunds Issued, Passwords Reset… What Really Happened?
A newly confirmed security breach at PayPal reveals that a threat actor quietly accessed sensitive customer data for half a year—sparking refunds, forced password resets, and rising concerns across the digital payments world.
PayPal confirms a six-month data breach, prompting refunds, alerts, and renewed security warnings for users worldwide.
In a development that has left parts of the fintech community unsettled, PayPalhas confirmed a data breach tied to its Working Capital system—one that went unnoticed for nearly six months.
Beginning July 1, 2025, a threat actor reportedly gained unauthorized access to internal systems related to the PayPal Working Capital (PPWC) loan application process. According to notification emails now landing in inboxes, the attacker’s access continued until December 12, 2025, when the company finally uncovered the intrusion.
The notification letter, first reported by cybersecurity outlets such as Bleeping Computer, states that the breach stemmed from an “error” associated with PPWC applications. Despite earlier statements that “PayPal’s systems were not compromised,” the company later clarified—somewhat contradictorily—that it had “terminated the unauthorized access to PayPal’s systems” after investigation.
Customers affected by the breach may have had the following sensitive data accessed:
Name
Email address
Phone number
Business address
Social Security number
Date of birth
A spokesperson confirmed that around 100 customers sustained unauthorized transactions linked to the incident. Refunds have already been issued. While this number is relatively small compared to PayPal’s global user base, the nature of the data accessed raises long-term security concerns.
Passwords Reset, Monitoring Offered
In response, PayPal has reset passwords for impacted users, meaning some customers may now encounter login prompts requiring new credentials. Additionally, the company is offering two years of complimentary credit monitoring and identity restoration services through Equifax—a gesture some users may view as small comfort given the depth of exposed personal information.
Security Advice From PayPal—Relevant to Everyone
The breach notification included a list of recommendations that all online users, not just the affected 100, would be wise to revisit:
Use unique usernames and passwords for every platform.
Change your password immediately if you detect unusual activity.
Avoid clicking links in emails, even if they appear legitimate—visit the website directly instead.
Be cautious with messages demanding urgent action, especially those pushing you to verify information instantly.
Never share your PayPal username, password, or one-time codes over calls, texts, or emails.
Security analysts also stress the importance of enabling passkeys, where available, offering stronger protection against credential-based attacks.
A Wake-Up Call for Digital Payments
Although the breach affected a relatively small number of users, it underscores the increasingly urgent reality of cyber threats facing major financial platforms. Digital payment ecosystems depend heavily on trust—and incidents like this remind everyone how fragile that trust can be when internal vulnerabilities linger for months undetected.
PayPal advises all customers to remain vigilant, review recent account activity, and ensure security settings—including two-factor authentication or passkeys—are fully enabled.
ServiceNow’s acquisition of Armis marks the company’s biggest deal to date as cybersecurity consolidation accelerates.
ServiceNow has agreed to acquire cybersecurity startup Armis for $7.75 billion, marking the largest acquisition in ServiceNow’s history as it accelerates its expansion into security and artificial intelligence.
The Santa Clara, California–based company will pay all cash for the San Francisco–based firm, according to a statement released Tuesday, confirming an earlier report by Bloomberg News. The transaction is expected to close in the second half of 2026, subject to regulatory approvals and customary closing conditions.
Market reaction and deal financing
ServiceNow shares slipped about 1.3% in early premarket trading in New York following the announcement. The stock had closed up roughly 0.9% on Monday, valuing the company at approximately $163 billion.
ServiceNow said it plans to fund the acquisition through a combination of cash on hand and debt, underscoring its confidence in Armis’ long-term growth and strategic value.
What Armis brings to ServiceNow
Founded by veterans of Israeli military cyber intelligence, Armis specializes in identifying, monitoring and securing connected devices across complex digital environments. Its platform is widely used in sectors including healthcare, financial services, manufacturing, and defense, where visibility into unmanaged or vulnerable devices is critical.
Earlier this month, Armis CEO Yevgeny Dibrov said the company had reached $300 million in annual recurring revenue, up from $200 million a year earlier. Despite the rapid growth, Armis had been planning a public listing in 2026, a goal now superseded by the ServiceNow deal.
ServiceNow’s broader AI and security push
ServiceNow has been steadily transforming itself into a dominant enterprise workflow and automation platform. In March, the company agreed to acquire AI startup Moveworks for $2.85 billion, a move aimed at building autonomous AI tools capable of completing workplace tasks without human intervention.
“ServiceNow is building the security platform of tomorrow,” said Amit Zavery, the company’s president, chief operating officer, and chief product officer.
“Together with Armis, we will deliver an industry-defining cybersecurity shield that provides real-time, end-to-end proactive protection across all technology estates,” Zavery said.
Cybersecurity dealmaking accelerates
The Armis acquisition comes amid a surge in large cybersecurity transactions, driven by growing enterprise demand and the rising use of AI to detect and counter hacking threats.
In recent months:
Alphabet agreed to buy cloud security firm Wiz for $32 billion
Palo Alto Networks struck a deal to acquire CyberArk for about $25 billion
Armis itself was acquired in 2020 by Insight Partners in a deal valued at $1.1 billion, alongside investors including CapitalG. Private equity firm Thoma Bravo had also explored a potential investment, with Armis executives previously saying they were evaluating multiple offers.
What’s next
Once completed, the acquisition is expected to significantly strengthen ServiceNow’s security portfolio, positioning the company as a key player in AI-powered enterprise cybersecurity at a time when digital infrastructure risks are multiplying.
Disney’s partnership with OpenAI signals how major studios may integrate AI into content, merchandising, and fan engagement
When Disney announced a three-year alliance with OpenAI, including a reported $1 billion investment and licensing its iconic characters for use in AI-generated images and short videos, the deal left many observers puzzled. After all, recent content partnerships between OpenAI and platforms like Reddit have raised uncomfortable questions about whether the money is worth the long-term competitive and brand risks.
But Disney’s deal makes far more sense when viewed through a lens the company understands better than almost anyone: merchandising.
For decades, Disney has mastered the art of turning intellectual property into obsession, engagement, and spending. Toys, backpacks, lunchboxes, theme parks, movies, cruise lines — all are part of a tightly controlled ecosystem designed to keep fans immersed. With OpenAI, Disney isn’t abandoning that playbook. It’s updating it.
Instead of plastic figurines, the new merchandise is synthetic content — AI-generated images and videos created by fans themselves using ChatGPT and Sora, OpenAI’s text-to-video generator. Anyone can now generate Disney-adjacent creative output, but under rules that Disney helps define.
AI as the Next Merchandising Channel
At first glance, allowing fans to generate content featuring Disney characters may appear risky, especially for a company long known as a highly curated, “predator-free” brand sanctuary in an internet dominated by chaotic user-generated content — or what critics increasingly call “AI slop.”
Yet this is precisely why Disney’s approach stands out.
Rather than fighting AI outright, Disney is licensing its characters under controlled conditions, positioning itself inside the technology rather than outside it. In doing so, it gains something arguably more valuable than licensing fees: influence over how its IP is used.
OpenAI has publicly committed to “responsible use” of Disney’s content, reducing the risk of beloved characters being placed in offensive, bizarre, or legally risky scenarios — or interacting with rival corporate IPs in ways Disney cannot control.
At the same time, Disney has made it clear it will aggressively defend its characters elsewhere. The company recently sent a letter to Google demanding it stop using Disney characters in AI-generated content without permission. The message is clear: AI use is allowed — but only on Disney’s terms.
Strategic Upside Beyond Licensing
Beyond brand protection, the OpenAI alliance offers Disney several strategic advantages.
First, by taking an equity stake, Disney is effectively hitching its future to the first major AI mover in consumer-facing generative technology. If OpenAI becomes as foundational as search or social media, Disney isn’t just a customer — it’s a stakeholder.
Second, Disney gains access to OpenAI’s tools, opening new creative and operational possibilities across film, television, marketing, and theme park experiences. In an industry under constant pressure to produce more content faster, AI-assisted workflows could become a competitive necessity.
There is also a discovery angle. If fans create something genuinely magical using Disney IP, the company can surface that work on its streaming platforms or internal creative pipelines. Just as YouTube became a feeder system for Hollywood talent, AI could quietly become a testing ground for future Pixar, Marvel, or animation concepts.
Engagement Over Everything
Critics will argue that Disney is aligning itself with what many still see as the entertainment industry’s newest villain. And history suggests that user-generated ecosystems inevitably produce strange, uncomfortable, or downright bizarre content.
But Disney’s calculus is simple: engagement beats purity.
Even if some brand dilution occurs, the upside of keeping millions of users actively interacting with Disney characters — thinking about them, remixing them, and emotionally investing in them — far outweighs the risks. Every AI-generated image or short video becomes another touchpoint in the Disney funnel, nudging users toward movies, merchandise, theme parks, and subscriptions.
As the company has proven time and again, Disney doesn’t need to control every moment — it just needs to own the ecosystem those moments live in.
A Template for Future AI Deals
Ultimately, Disney’s OpenAI alliance may become the template for how major IP holders navigate the AI era. Rather than blocking generative tools outright or selling content libraries cheaply, Disney is treating AI as the next distribution and merchandising layer.
The pipeline that once ran from movies to toys to theme parks now runs through algorithms, prompts, and synthetic media. AI is no longer outside the business. It is part of the machine.
And if Disney’s history is any guide, once the House of Mouse embraces a platform, it rarely lets go.
To provide the best experiences, Daily Global Diary uses technologies like cookies to store and/or access device information. Consenting to these technologies will allow us to process data such as browsing behavior or unique IDs on this site. Not consenting or withdrawing consent, may adversely affect certain features and functions.
Functional
Always active
The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.
Preferences
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
Statistics
The technical storage or access that is used exclusively for statistical purposes.The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
Marketing
The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.
Entertainment5 days ago
Entertainment7 days ago
Entertainment6 days ago
Politics1 week ago
Entertainment5 days ago
Entertainment1 week ago
Entertainment5 days ago
Health1 week ago