It is crucial that the Mexican government strengthen its cybersecurity policies, implement more secure passwords, and increase awareness of the risks of social engineering among employees. Víctor Ruiz, a cybersecurity expert, emphasized the importance of these preventive measures.
Among the most notable cybersecurity incidents that have affected government institutions in Mexico in recent years are several significant attacks. In 2024, the RansomHub group leaked 206 GB of sensitive data from the Legal Counsel of the Presidency. In 2022, the Guacamaya collective carried out a massive attack against the Sedena, exposing 7 terabytes of classified documents. Organizations such as Pemex, Conagua, the Presidential Press Accreditation System, and the Llave CDMX platform have also been vulnerable to cyberattacks.
An investigation revealed that more than 570 computers from government institutions in Mexico have been compromised. These computers are associated with the .gob.mx domain, and 54 credentials of third-party employees were found, which enable cybercriminals to infiltrate systems and carry out more sophisticated attacks.
Víctor Ruiz warns about the leakage of over 250,000 passwords, which can be used in phishing attacks and to impersonate identities in government institutions. Infostealers have posed a major threat, stealing vital information from government dependencies, exposing millions of people to security risks.
The use of infostealer malware has compromised the networks of the Mexican government, allowing attackers to obtain access credentials and access confidential information. This type of malware is capable of stealing browser passwords and operating system data, facilitating more advanced moves within infected systems.
The weakness of passwords and the lack of adequate security measures are some of the main causes of these cyberattacks. The constant leakage of confidential information from government dependencies highlights the importance of strengthening cybersecurity measures and raising awareness about the risks associated with social engineering and infostealers.
