iCloud Backup Betrays Brazilian Crime Lords: How a Routine Sync Exposed a $320 Million Laundering Empire

A Brazilian accountant's iCloud backup unraveled a $320 million money-laundering ring, leading to arrests of musicians MC Ryan SP and MC Poze do Rodo plus influencers. Police mapped shell companies and crypto flows from the files, seizing assets worth hundreds of millions.
iCloud Backup Betrays Brazilian Crime Lords: How a Routine Sync Exposed a $320 Million Laundering Empire
Written by John Marshall

Brazilian federal police raided homes and offices across eight states last week, handcuffing funk musicians MC Ryan SP and MC Poze do Rodo in a sweeping crackdown on a money-laundering network that funneled over $320 million in dirty cash. The tipoff? A single iCloud backup from an accountant’s phone. Rodrigo de Paula Morgado thought Apple’s cloud was impenetrable. It wasn’t—for him. Police seized his device during an October probe into drug trafficking, then subpoenaed the backup. Inside: bank extracts, chat logs, contracts, receipts. A roadmap to the underworld.

That digital trove mapped an autonomous syndicate operating like a shadow bank. Funds from illegal betting parlors, underground raffles, and international narcotics poured in—R$1.6 billion total, or about $290 million at current rates. Operators splintered deposits across accounts in ‘smurfing’ tactics, routed cash through proxies and shell firms, converted chunks to cryptocurrency on exchanges like Binance and Coinbase, then wired sums overseas. MC Ryan SP, real name Ryan Santana dos Santos, stood at the apex. His music labels blended clean showbiz revenue with illicit bets, shielding assets via family trusts and third-party holdings. Real estate. Luxury cars. Jewelry. All bought with laundered proceeds. G1 Globo detailed how Morgado’s files linked influencers to the flow: Raphael Sousa Oliveira of the Choquei page, and Chrys Dias with nearly 15 million followers, hawked raffles and burnished the group’s image for kickbacks.

MC Poze do Rodo, or Marlon Brendon Coelho Couto da Silva, ran EMPOZE Editora, a firm police say captured and fragmented funds from digital lotteries. Arrested in a Rio luxury condo. Short sentences hit hard. Raids netted weapons. Cash. A necklace emblazoned with Pablo Escobar looming over São Paulo’s skyline—from MC Ryan’s stash. Authorities blocked R$1.63 billion in assets, including crypto wallets.

Apple hands over iCloud data on valid warrants. No backdoors needed. The company provides service keys for backups not shielded by Advanced Data Protection, as outlined in its security guide. Morgado skipped that opt-in encryption. His trust backfired. G1 reported he “placed great confidence in iCloud’s security, which ended up allowing federal police to map the entire organization.”

This isn’t isolated. Last October, iCloud photos exposed a U.S. poker-rigging ring tied to mobsters and NBA figures like Chauncey Billups. X-rays of rigged tables. Dissected shufflers. Texts plotting losses to dodge heat. Thirty-one arrests, per AppleInsider. Backups betray the careless.

And law enforcement knows it. Warrants now target more clouds—Google Drive too—plus seized phones for live data pulls. The Narcofluxo operation, spinning off 2025’s Narco Bet and Narco Vela probes, dispatched 200 agents. Thirty-nine temporary arrests executed. Forty-five searches. Charges pile up: organized crime. Laundering. Tax dodging. Currency flight.

Criminals chase anonymity in crypto and facades. Yet phones sync everything—conversations, ledgers, proofs. One overlooked setting undoes empires. MC Ryan’s team claims legit deals. Poze’s camp wants due process. Prosecutors see patterns too clear to ignore.

Broader implications ripple. Brazil’s betting boom feeds such networks; influencers amplify them. Police vow more sweeps. For tech insiders, a reminder: iCloud’s convenience carries risks. Warrants work. Encryption matters—but only if enabled. This bust proves clouds can crack cases wide open. Criminals adapt. So do cops.

Subscribe for Updates

CloudSecurityUpdate Newsletter

The CloudSecurityUpdate Email Newsletter is essential for IT, security, and cloud professionals focused on protecting cloud environments. Perfect for leaders managing cloud security in a rapidly evolving landscape.

By signing up for our newsletter you agree to receive content related to ientry.com / webpronews.com and our affiliate partners. For additional information refer to our terms of service.

Notice an error?

Help us improve our content by reporting any issues you find.

Get the WebProNews newsletter delivered to your inbox

Get the free daily newsletter read by decision makers

Subscribe
Advertise with Us

Ready to get started?

Get our media kit

Advertise with Us