A new Android trojan is being used to steal passwords from bank accounts in Brazil.   The trojan is being tracked as PixPirate. The malware was tracked between the end of 2022 and the beginning of 2023. PixPirate enables attackers to automate the process of its malware deployment by infecting Pix, a payment platform that is used by most banks in Brazil. If the threat actor manages to successfully infect its target with PixPirate, they can: Intercept banking credentials, perform ATS attacks, intercept/delete SMS messages, prevent the uninstalling of apps, and serve malvertising. In 2020, Latin America was targeted with three times as many mobile browser attacks as the global average.