/i.s3.glbimg.com/v1/AUTH_59edd422c0c84a879bd37670ae4f538a/internal_photos/bs/2021/H/w/YbA657S3aYVfC0P9wboQ/g1-favicon.png){kind=small}
/i.s3.glbimg.com/v1/AUTH_da025474c0c44edd99332dddb09cabe8/internal_photos/bs/2023/1/X/nkkB7tSdirnIUbGhakCQ/favicon-o-globo.png){kind=small}
/i.s3.glbimg.com/v1/AUTH_63b422c2caee4269b8b34177e8876b93/internal_photos/bs/2018/e/e/PAMa3oQXOPBUOsGgFyFw/valor-tenant-icon.png){kind=icon}
Overview
- Diletta Solutions confirmed a cyber intrusion, and sources say criminals coerced an employee for credentials in a method resembling July’s C&M Software case.
- About R$26 million was diverted from a FictorPay client, with nearly R$40 million reported across other Diletta‑served fintechs.
- FictorPay and BaaS provider Celcoin say their own platforms were not breached, as Celcoin flagged atypical movements and froze transactions.
- The Central Bank observed unusual flows on Sunday and alerted Celcoin, and sources say no systems run by the regulator were attacked.
- New rules cap certain Pix and TED transfers at R$15,000 via PSTIs, but Celcoin’s direct Pix connection meant the cap did not apply, and the regulator is considering broader limits according to reports.