A recent attack by the ransomware group RansomHub has compromised the Government of Mexico, affecting the domain https://t.co/Wl9MrD3U2S with a leak of 313 GB of information. Notable victims include Grupo Aeroportuario del Centro Norte (OMA) and the National Autonomous University of Mexico (UNAM), as well as the company Mabe. This attack highlights the growing threat of ransomware in Mexico, where public and private institutions are at risk.
The RansomHub group claims to have obtained sensitive data such as administrative contracts, financial information, insurance data, and lists of CJEF officials with personal details. They have threatened to disclose all the information on the deep web if a ransom is not paid within 10 days. Experts like VĂctor Ruiz warn about the consequences of paying ransomware groups, as this can expose the victim to further attacks or the commercialization of the obtained data.
RansomHub, known for its Ransomware-as-a-Service (RaaS) model, operates internationally and demands payments to prevent the disclosure of compromised information. In Mexico, it has encrypted data from key organizations, now including the Mexican government. This incident underscores the importance of strengthening cybersecurity and establishing strong protocols to protect sensitive information. Cybercriminals like RansomHub continue to pose a serious threat globally.
