Overview
- Brazil-focused schemes increasingly impersonate the Banco Central or Pix via WhatsApp to solicit credentials, despite officials not requesting data through messaging apps.
- Vendors executing the “golpe da maquininha” alter transaction amounts on QR or card terminals to overcharge tourists, making on‑screen verification essential before approval.
- Fraudsters replace legitimate QR codes or send payment links for supposed reservations, diverting funds or capturing wallet logins in beaches, kiosks and other informal settings.
- Cybersecurity specialists, including CPCIBA, report a seasonal rise in wallet-related complaints in high‑turnover tourist areas, with many victims noticing irregularities only hours or days later.
- With digital wallets handling roughly 70% of global digital transactions, experts recommend contactless and wallet payments with real‑time alerts, strict payee and amount checks, avoiding public Wi‑Fi and limiting available balances.