🧩 07/05 — Arrests and recovery of assets
• Operation Magna Fraus arrested two suspects, including an IT operator from C&M, during actions by the Federal Police and Public Ministry of SP in Goiás and Pará. R$ 5.5 million in crypto assets were recovered and USDTs equivalent to R$ 32 million were blocked.
• It is estimated that the scam involved more than R$ 500 million, affecting at least six institutions such as BMP and Credsystem.
⸻
🔒 Insider confession
• A technician identified as João Nazareno Roque, from C&M Software, confessed to selling credentials used to access the systems. He received R$ 5,000 for the login and password, and an additional R$ 10,000 to continue in the scheme.
• The scam occurred in the early hours of July 1st, through mass PIX transactions, with R$ 541 million diverted from BMP, according to CNOBS.
⸻
🚨 Considered the largest cyber scam in the financial sector
• The Civil Police of SP and the Federal Police consider this the largest electronic attack ever recorded against financial institutions in Brazil, with estimated losses between R$ 500 million and R$ 800 million+.
⸻
📌 Summary of key information:
I
Arrests
Technician João Roque + another suspect
Recovered/blocked amounts
R$ 5.5 million (crypto) + R$ 32 million in USDT
Total amount diverted
R$ 500 million to over R$ 800 million
Suspicious accounts tracked
140+ accounts used in the fraud
Scam method
Sale of credentials via social engineering and mass PIX transactions
Authorities involved
Federal Police, Civil Police-SP, CyberGaeco, Public Ministry
📡 What’s next
The investigation continues to trace the money—much of which has already left the country—identify others involved, and strengthen the regulation of security in technical providers such as C&M Software.