216.73.217.19

GenAI Used to Impersonate Brazil's Government Websites

· Published 08/08/2025 16:36 · Modified 10/08/2025 20:51

Export JSON

Essential information

Published
08/08/2025 16:36
Modified
10/08/2025 20:51
Tags
2025-08-08 blackbox ai brazil deepsite ai generative ai government impersonation phishing pix payment seo poisoning
Related entities
7 observables, 2 techniques (mitre), 4 others

Description

Threat actors are leveraging tools like and to create templates that closely mimic official Brazilian government websites, such as the State Department of Traffic and Ministry of Education. These malicious replicas are boosted in search results using techniques. The pages collect sensitive personal data, including CPF numbers and addresses, validating the information through APIs to build credibility. The ultimate goal is to trick victims into making payments via Pix, 's instant payment system. Technical analysis reveals AI-generated source code signatures, including TailwindCSS styling, explanatory comments, and non-functional elements. The campaign demonstrates the evolving sophistication of attacks empowered by tools.

External references