Mexico has secured the 42nd position in the Global Cybersecurity Index (NCSI) and stands as the second most cyber-attacked country in Latin America.
This region is experiencing a high incidence of phishing scams primarily targeting users engaged in commercial transactions.
According to a study by Trend Micro, phishing threats are on the rise in Latin America, driven by banking trojans like Mekotio, BBTok, and Grandoreiro.
These malware variants are designed to steal confidential banking credentials, facilitating unauthorized transactions through sophisticated tactics that deceive victims by simulating legitimate communications about fake speeding fines or criminal complaints, prompting victims to act quickly and click on dangerous links without proper prior analysis.
"Cybercriminals behind banking malware are reported to use embedded links in emails that direct recipients to fake commercial websites where they are invited to download files containing malware. The introduction of trojans in malicious PDF and ZIP files downloaded onto target machines remains an effective way to infect victims," noted Sergio Navarro, IQSEC’s Director of Pre-Sales.
Vulnerable Sectors
According to the same report, the most vulnerable companies to these attacks are in the manufacturing sector, accounting for 26% of attacks, followed by retail at 18%, and the technology and financial sectors with 16% and 8% of attacks respectively.
"The diversity of affected sectors highlights the urgency of adopting a comprehensive and sector-specific approach to cybersecurity that fosters collaboration among organizations, governments, and the general community in the fight against cybercrime. During this Cybersecurity Awareness Month, it is a good opportunity to strengthen our defenses, as digital security is a shared responsibility, and every action contributes to a safer digital environment," emphasized the cybersecurity specialist.
Data Leaks: The Achilles' Heel of the Financial Sector
In Mexico's financial sector, 15 cyber-attacks have been recorded so far in 2024, causing economic losses exceeding 120 million pesos and the leakage and publication of confidential information.
"Data leaks are a direct consequence of a lack of stable security culture. Often, employees open emails or download attachments without suspecting that they are introducing malicious software into corporate systems. This is one of the main entry points for cybercriminals," explained Sergio Navarro.
One of the most complex problems facing financial institutions is data leaks, which can be either internal or external. Both types pose significant risks to information security, and although they differ in their origins and tactics, the global cost of a data leak, according to IBM’s 2024 Cost of a Data Breach Report, is $4.88 million.
