JanelaRAT Banking Trojan Hammers Brazil with Nearly 15K Attacks

JanelaRAT, a remote access trojan focused on Latin American financial institutions, racked up 14,739 recorded attacks in Brazil during 2025. The malware specifically targets banking customers in the region, making it one of the more active threats in Latin America’s already crowded banking-trojan landscape.

Brazil’s position as the largest economy in Latin America makes it a persistent target for financially motivated threat actors. JanelaRAT joins a lineage of Latin American banking trojans - including Grandoreiro, Casbaneiro, and Mekotio - that have plagued the region for years. The scale of attacks suggests an active and well-resourced operation with sustained campaigns against Brazilian banking infrastructure.