Most of the malicious activity by Brazilian actors is within Brazil against Brazilians. But this does not mean that Brazil lacks hacking capabilities, nor that the rest of the world can ignore Brazilian hackers. In its latest regional analysis of hackers and hacker communities, Recorded Future's Insikt intelligence group describes Brazilian hackers as 'pirates' -- continually changing targets and tactics to get the easiest money. The report highlights four characteristics of Brazilian hacking: carding, spam, mass pharming, and the ability for the top tier hackers to bypass two-factor authentication. The FCA report concluded, "The attackers most likely used an algorithm which generated authentic Tesco Bank debit card numbers and, using those 'virtual cards', they engaged in thousands of unauthorised debit card transactions." A spam campaign sent users to a website containing scripts that would attempt to brute force the routers credentials (reported by Kaspersky Lab), while separately the attackers (or possibly other attackers) compromised a local media site and set it up to hack routers and change their DNS configurations (reported by Sucuri).