An access that would have been compromised from an official email account of a Mexican Security Secretariat is for sale on the dark web for 220 dollars, approximately 3,700 Mexican pesos. The seller mentions that this access has a "high success rate, particularly for attacking American individuals." This information was revealed by a user identified as EDRVendor, who is an intermediary specializing in the sale of compromised government data and warns that any additional assistance would incur an extra cost.
In addition to access to the Mexican government email, EDRVendor offers access to accounts from other countries such as Ukraine, Argentina, Brazil, Egypt, and Syria. Interestingly, the Mexican access is the most expensive on the list, which could be related to its potential for directed operations against American targets. For this reason, it is recommended that security officials verify access and apply necessary security measures.
According to statements by Víctor Ruiz, a certified cybersecurity instructor and founder of SILIKN, the access sold on the dark web has a high risk of being used to intercept confidential communications, send false emergency data requests, and commit fraud. This type of legitimate government access makes it easier for these fraudulent requests to be accepted without questioning, potentially having multiple malicious uses.
The EDRVendor announcement highlights that access to the official email can be used for multiple fraudulent purposes, including intercepting communications, requesting false emergency data, and committing fraud. Cybersecurity experts warn that, in the wrong hands, this sensitive information could be used harmfully.
