Hackers attempted to steal $130 million from Evertec’s Brazilian subsidiary Sinqia S.A. after breaching its systems connected to Pix, Brazil’s real-time payment platform.
Evertec, a major financial technology company operating across Latin America, Puerto Rico, and the Caribbean, disclosed the incident in a filing with the U.S. Securities and Exchange Commission (SEC).
The breach occurred on August 29, 2025, when attackers gained unauthorized access to Sinqia’s Pix environment and tried to initiate fraudulent transactions. Sinqia immediately halted all Pix transaction processing and engaged external cybersecurity experts to investigate the intrusion.
The attack involved business-to-business transactions tied to two of Sinqia’s client financial institutions. Local media reports pointed to HSBC, but the bank confirmed that no customer accounts or data were affected. Investigators revealed that hackers accessed the system using stolen credentials from an IT vendor’s account.
Evertec confirmed that part of the attempted $130 million theft has already been recovered, although the company did not specify how much. Recovery efforts are ongoing. Following the breach, the Central Bank of Brazil revoked Sinqia’s Pix access, temporarily affecting services for 24 financial institutions. The company is working with regulators to restore access after providing additional security assurances.
Evertec stated there is no evidence of personal data exposure and no indication that systems beyond Sinqia’s Pix environment were compromised. However, the company warned that the financial and reputational impact could be significant.
If this article helped you, please consider supporting our work. Every small contribution keeps Abijita.com independent and running.
Launched in November 2020, Pix has become Brazil’s most widely used payment system, enabling instant 24/7 money transfers. Its popularity has also made it a frequent target for cyberattacks and Android banking malware.
