Pix has transaction record amid key leakage – Finance – Tecnoblog

Pix has become the darling of Brazilians when it comes to paying or transferring money. On Saturday (2), the Central Bank tool broke a record of financial operations carried out in a single day. There were more than 40 million instant payments made, and an amount of over R$ 26.8 million moved. On Thursday (30), BC reported the leak of 395,000 Pix keys, a breach that came from Banese.


Pix: new transaction record reached more than 40.8 million transactions (Image: Disclosure/Central Bank)

On the day that Pix was launched in restricted phase by the Central Bank, November 3, 2020, the institution registered 2,345 transactions using the tool. On Saturday, Pix broke the record for payments made in a single day, with 40,881,959 trades. Before, the biggest mark had been registered on August 6th of this year, with 40,461,988 one-time payments.

Brazilians transfer an average of R$220 per Pix

On the date it broke the record, Brazilians transferred an average of R$220.56 per Pix. According to data from the Central Bank, most of the keys used to authorize operations are of a random nature, that is, when the user registers a unique sequence of numbers and letters for each transfer made.

Second in popularity are keys that use the CPF, and third that use the mobile number. In total, BC already registers more than 300,000 passwords for Pix transactions.

The growth of the instant payment tool comes, however, with its drawbacks: recently, the BC reported that 395,000 Pix keys were leaked by a security breach in Banese (Banco do Estado de Sergipe SA). Although the reason for the leak is still being investigated, the suspicion is that the data was leaked through phishing in two Sergipe bank accounts.

Senacon (National Consumer Secretariat) opened a preliminary investigation to determine Banese’s responsibility for the leak. According to the agency, the security breach may have exposed the personal data of users with bank accounts, such as CPF.

Business accounts are in the minority, but transfer 36% of the value

Even with the leak, the BC says that no data of a sensitive nature was exposed: passwords, data and transaction history were not exposed, as well as customer bank statements. The agency considers that the potential impact on users is low.

Also according to BC data, the overwhelming majority of accounts that transferred money by Pix in September are from individuals. There are more than 205 million individual accounts, which corresponds to 95.86% of all users registered on the platform. It’s not surprising, therefore, that 74% of transfers in September were P2P — person-to-person.

Individual accounts are included in the new Central Bank rule with a limit of R$1,000 for Pix at night, between 8:00 pm and 6:00 am. But data from the entity itself reveal that the peak time for transactions in the last month is between 11:00 and 12:00. The new transfer ceiling takes effect from today.

However, B2B transactions — business to business — have a greater share in the total when it comes to the amount transferred by Pix. Transactions of this type account for 36% of all Pix made in September, compared to P2P transfers, which account for 41%.

Bills want to suspend Pix

Pix has also become the target of some bills from politicians who want to suspend the means of payment on the grounds of protecting users.

Federal Deputy Alexandre Frota (PSDB) wants to ban Pix until the Central Bank presents a proposal to regulate instant payments. For the congressman, the fashion of lightning kidnapping with Pix has replaced what he called the “exit of the bank”, when thieves wait for the victim to finish drawing at the ATM of bank branches.

Another PL to suspend Pix came from the state deputy of São Paulo, Paulo Campos Machado (Avante). He, in turn, wants to ban the tool in the state until the BC sends a technical report with security measures against fraud and theft using Pix. For Campos Machado, Pix became a “thug’s temptation”.

Collaborated: Everton Favretto

Leave a Comment