A Bitrefill, a global platform that allows you to recharge mobile phones, credit cards and pay bills using cryptocurrencies like Bitcoin and Ethereum, recently announced that it was the victim of a cyber attack attributed to the groupLazarusThe incident, which occurred in March 2025, resulted in theft of customer funds and raised warnings about the security of cryptocurrency exchanges and services in Brazil and the world.

According to the company’s information, the exact amount of the diversified resources has not been disclosed, but Bitrefill has that it will bear the losses using its operating capital.$10 millionIt is also important to note that this is the most important part of the study.HackingNorth Korea has been responsible for attacks on other exchanges and banks.Atomic Wallet attacks in 2023and toswapSkycoin in 2022.

How the attack happened and what it means for Brazilian investors

The attack on Bitrefill was possible due to anInvasion of an employee's laptopAlthough the platform has not disclosed technical details, it is likely that there has been a combination ofphishing(e-mail or message fraud) and exploiting vulnerabilities in unupdated software. The Lazarus group is known to use advanced tactics, such asZero-day exploits(Attacks on faults not yet corrected) and social engineering.

In Brazil, where the cryptocurrency market is growing rapidly — with more than15 million peopledigital assets by 2025, according toThe Federal Recipe"Bitrefill is a respected company, but no service is 100% safe. Brazilian investors need to be attentive not only to profitability, but also to the reputation of the exchanges and platforms they use."March of JuniorBlockchain analyst atBrazilian Association of Cryptocurrencies (ABCripto).

The case also raises questions about the responsibility of companies in cases ofHacksBitrefill has opted forAbsorbing the lossesThis can bring confidence to customers, but not all platforms have this financial capacity.Resolution 201/2023 of the CVM“The Brazilian market needs more transparency and mechanisms of protection for investors, such as insurance or guarantee funds,” says Junior.

Impact on the market: volatility and increased supervision

The announcement of the attackImmediate reaction in the cryptocurrency marketBitcoin, the main digital asset, has recorded a decline in3,2%In the first 24 hours after the announcement, theCoinGeckoAlthough the price has then recovered, the episode served as a reminder that cyber risks can affect investor confidence.

In addition to volatility, the case could accelerate the supervision of exchanges and cryptocurrency services in Brazil.The Federal RecipeIt requires the declaration of cryptocurrencies above R$5,000, and aThe Federal Police“Operations like Lazarus show that Brazil cannot stay behind in regulation. We need laws that force companies to adopt robust security measures,” he said.A member of the PFHe asked for anonymity.

Another point of attention is the use of cryptocurrencies for illegal financing. The Lazarus group has already been sanctioned byU.S. Treasury DepartmentNorth Korea’s nuclear weapons program with digital currenciesfallsThe Economic Defense Board has already investigated cases of market manipulation involving cryptocurrencies, and incidents like this could lead to new regulatory actions.

For Brazilian investors, the incident reinforces the need forDiversifying risks“Don’t put all your eggs in the same basket.Hardware“It’s important to avoid leaving cryptocurrencies in exchanges for too long,” he said.TheAbcryptin a recent statement.

What to do to protect yourself? lessons from the Bitrefill case

Although the Bitrefill attack has been targeted at a specific company, the risks are universal for those dealing with cryptocurrencies. Experts indicate some measures to minimize exposure to attacks:

  • Use of walletsHardware(Ledger and Trezor)They keep your private keys offline, out of the reach of hackers.
  • Enable two-step authentication (2FA)Prefer methods such asby Google AuthenticatororYubiKeySMS, which can be intercepted.
  • Check the exchange reputation:Before depositing funds, research security history, audits and operating time.
  • Keep software up to date:Hackers exploit faults on outdated systems, such as browsers and operating systems.
  • Beware of aphishing:Suspicious emails or messages asking for sensitive information or urgent transfers.

The case of Bitrefill also serves as a warning to the Brazilian government. “Brazil needs to invest in education on cryptocurrencies and in cybersecurity technologies.an executive of the financial sectorHe asked not to be identified.

In the meantime, Bitrefill continues to operate normally, with guarantees that it has strengthened its security protocols. The company has not disclosed details about the measures taken, but experts suggest that the adoption of theMulti-GIS(Multiple signatures for transactions) andCold storage(offline storage of funds) may have been implemented.

For the Brazilian market, the episode is another chapter in the history of the evolution — and risks — of cryptocurrencies. As the sector grows, security and regulation need to go side by side to protect investors and maintain confidence in the ecosystem.