The certified cybersecurity instructor and founder of SILIKN, VĂctor Ruiz, has warned about the exposure of thousands of government dependencies in Mexico to cyberattacks due to critical flaws in Windows Server. According to an analysis conducted by SILIKN, around 10,280 institutions are at risk of experiencing cyberattacks if they do not urgently implement the necessary security measures.
Ruiz highlighted the importance of applying security patches immediately to mitigate vulnerabilities. He explained that delays in applying these patches leave systems exposed to increasingly sophisticated attacks and that complementing patch installations with vulnerability management tools is essential to ensure that flaws are corrected and that the system configuration is appropriate.
One of the critical vulnerabilities mentioned by Ruiz is CVE-2025-21376, which affects the Lightweight Directory Access Protocol (LDAP) of Windows Server and allows remote code execution in the LDAP service, a key part of Active Directory. According to Ruiz, this could compromise user authentication and authorization within the government network, posing a serious threat to the integrity and availability of data.
The at-risk government dependencies identified in the SILIKN report include institutions such as IMSS, Infonavit, the Congress of Jalisco, the National Water Commission, among others. In light of this situation, Ruiz recommended that institutions prioritize updating their systems by evaluating patch and vulnerability management tools.
Additionally, Ruiz warned about other serious vulnerabilities in various versions of Windows Server, such as CVE-2025-21418, which compromises the Windows Auxiliary Function Driver for WinSock, allowing an attacker to escalate privileges and gain full control over vulnerable systems. Another key vulnerability mentioned is CVE-2025-21391, present in Windows Storage, which also poses a significant risk if appropriate security measures are not implemented.
