Banco República/BROU was included in the same global banking watering-hole activity that used compromised financial-sector websites to target a small set of selected IP addresses belonging mostly to banks and related organizations. The linked analyses describe redirects tied to Mexican regulator and Uruguayan bank sites, payload delivery through eye-watch[.]in, Ratankba and Hacktool activity, encrypted remote-access capabilities, and Lazarus-like code or infrastructure overlaps.