A cyberattack targeted C&M, a software company facilitating PIX transactions in Brazil, resulting in the diversion of over 540 million Brazilian reais (approximately $100 million) from the banking system. The breach involved unauthorized access to PIX systems, orchestrated by hackers who recruited an IT employee, João Roque, to sell his credentials. The attack occurred in a single night, affecting financial institutions but not end clients. Authorities have blocked 270 million reais linked to the scheme and are investigating additional suspects. The Central Bank suspended part of C&M's operations as a precautionary measure.

In August 2022, DESFA, Greece’s largest natural gas distributor, confirmed a cyberattack resulting in a limited-scope data breach and an IT system outage. The attack was executed by the Ragnar Locker ransomware group, a well-known threat actor with a history of high-profile breaches. While DESFA’s IT team managed to thwart deeper infiltration, hackers still accessed and potentially leaked files and data, confirming a network intrusion. The incident disrupted operations, though the full extent of the data exposure remains unclear. The involvement of ransomware (Ragnar Locker) suggests the attackers likely demanded a ransom, though DESFA did not publicly confirm payment or further operational disruptions beyond the initial breach. The attack highlights vulnerabilities in critical infrastructure, raising concerns about energy sector security and the broader implications of cyber threats on national utilities. The leak of internal data—even if limited—poses risks to corporate confidentiality, operational integrity, and potential regulatory repercussions.