A high-value strategic access has been sold on a cybercrime forum: access to the email of the Secretariat of State Security of Mexico (SSEM) was offered for 220 dollars, approximately 3,700 Mexican pesos, with a "high probability of success" in fraud operations targeting American citizens.
According to EDRVendor, the group of cybercriminals specialized in selling access to government email accounts worldwide, the sale of credentials to intervene in an account of a security institution in Mexico has been completed. This access would allow entering control panels of law enforcement on social networks, which poses a significant risk in terms of security and privacy.
Victor Ruiz, a certified cybersecurity instructor and founder of SILIKN, expressed his concern about the possibility of future cyberattacks, stating that if the sale of the access is legitimate, it could unleash a wave of cyberattacks in the coming days. Despite experts' warnings, authorities have denied the existence of a real risk.
The access sold by EDRVendor could be used to intercept confidential communications, send fraudulent emergency data requests, and execute various forms of digital fraud. It is highlighted that this access has a "high probability of success, particularly when targeting American individuals," which reinforces concerns about its potential use in phishing and deception campaigns.
Warnings have been issued about possible attack scenarios, including targeted phishing, fraudulent requests to U.S. technology companies, attempts to access internal systems of the Mexican government, extortions, and fraud through ransomware, as well as the creation and distribution of misinformation to the public. In light of these risks, security experts urge authorities to investigate and revoke any compromised credentials to mitigate the impact and prevent future disasters.
