HQ/EMEAFind out how we can help your business
The new and highly advanced variant of Chaes malware known as Chae$ 4 is the latest malicious software that the strain developers especially designed to target clients of financial and logistics companies operating in Latin America, raising concerns among regional institutions.
The Chaes malware first emerged in November 2020. Initially, its primary focus was on e-commerce customers in Latin America, with a particular emphasis on the Brazilian market. However, it’s worth noting that the malware had been active since at least mid-2020, underlining the persistence and adaptability of cybercriminals.
The new Chae$ 4 malware strain indicates that cybercriminals are constantly growing.
Chae$ 4 represents a significant leap in the evolution of this malware strain, boasting several advanced features that make it a formidable adversary for cybersecurity experts. It features a complex code structure, utilises Python as its primary programming language, and employs encryption techniques and stealth mechanisms that make it exceptionally challenging to detect by traditional security systems.
One of the most concerning aspects of Chae$ 4 is its expanded scope. It now targets a broader range of services, including well-known platforms and banks like Mercado Libre, Mercado Pago, WhatsApp Web, Itau Bank, Caixa Bank, and MetaMask.
Additionally, the malware uses WebSockets for communication between its modules and the command-and-control server. Furthermore, Chae$ 4 exhibits a strong interest in cryptocurrency. It includes a clipper module designed to steal Ethereum (ETH) and Bitcoin (BTC) and a file upload module that facilitates the theft of MetaMask files and credentials.
While Chae$ 4 is a prominent concern, it’s not the only cyber threat on the horizon. Earlier this month, a researcher discovered a new Android malware called MMRat that targets smartphone users in Southeast Asia.
Additionally, a new malicious campaign uses the Luna Grabber infostealer to target developers creating Roblox scripts. The importance of cybersecurity solutions cannot be overstated, considering these threats.
Organisations in Latin America’s financial and logistics sectors must prioritise regular software updates and patching, deploy robust endpoint security solutions, and educate users about the risks of downloading apps and software from unverified sources. Therefore, the cyber landscape demands a proactive approach to safeguarding sensitive data and infrastructure.
