Case is investigated by the Federal Police and the Brazilian Intelligence AgencyAntonio Cruz / AgĂȘncia Brasil
The information was published by the newspaper ‘Folha de S.Paulo’ and confirmed by EstadĂŁo. The diversion occurred on April 5th. Later, there was a second attempt at movement, which totaled R$9 million, from the same ministry. This time, however, the attack was thwarted. The case is investigated by the Federal Police and the Brazilian Intelligence Agency (Abin).
There is still no confirmation whether public servants or other people were involved in the crime. Other amounts may have been diverted from other ministries. According to the National Treasury Secretariat, the security of the system is preserved.
As EstadĂŁo found, the government identified that the fraud occurred by changing the bank details of the supplier who was supposed to receive the money from the government. By identifying the movement, the ministry was able to recover R$2 million because the money had not yet left the recipient’s bank account. The rest ended up being withdrawn or transferred.
SMS messages
It is also known that government employees received a suspicious message on their cell phones attempting to steal data from Siafi. The text contained the name, the person’s CPF and a link to update data, which was fraudulent: “SIAFI: (user name) We inform you that from 04/08 the use of the digital certificate will be mandatory”, said the message , followed by a link and the employee’s CPF.
All Union money needs to be registered on the platform. Only authorized people in each body are authorized to access the system. An even more restricted number can make payment orders, transferring resources from the Treasury to the bank accounts of those who will receive it.
On April 9, government employees were warned about the fraudulent message and warned not to click on the link â and that, if they had clicked or provided the data, they should immediately change the access password and report the case to the National Treasury. When contacted by EstadĂŁo, the organization did not comment on the message.
Now, this certificate must necessarily be issued by Serpro, the federal government’s intelligence company, and cannot be provided by other private companies that also issue digital signatures â which was previously accepted.
Asked this Monday (22) about the invasion, the Minister of Finance, Fernando Haddad, said that one of the suspects had already been identified.
“I don’t believe that the cycle of investigations (by the PF and Abin) is complete, but it has begun, and it seems that one of those responsible has already been identified. I don’t have a name or anything like that because the investigation is being carried out under secrecy,” said the minister.