Cyberattacks on Mexican Government Agencies May Rise 260% in 2025

Cyberattacks targeting government agencies in Mexico could grow by 260% in 2025 compared to 2024, according to SILIKN. This increase is driven by a combination of obsolete technological systems and budget cuts, posing a complex scenario in terms of digital protection and security.

"The budget reduction, coupled with the lack of technological system upgrades, exponentially increases the vulnerability of government agencies. This scenario creates a favorable environment for cybercriminals to operate with greater success," says Victor Ruiz, Founder, SILIKN.

In November 2024, the Mexican government approved the 2025 Economic Package, which allocated a total national budget of MX$9.3 trillion (US$458.5 billion), 1.6% less than the previous year. This cut was made within the framework of an austerity policy that prioritizes social programs and fiscal discipline, but could leave investments in technology and cybersecurity on the back burner, putting several government agencies exposed to a greater risk of cyberattacks, according to Ruiz.

Ruiz argues that 70% of government agencies in Mexico operate with systems that present critical vulnerabilities. "During 2024, an average of 5,500 cyberattacks were registered weekly, of which 65% managed to compromise key information or systems. This percentage could increase significantly in 2025 due to the lack of updating and protection measures," says Ruiz.

Government Agencies: Prime Targets for Cyberattacks?

According to Checkpoint, government institutions have long been prime targets for cyberattacks for a variety of reasons, including warfare, espionage, and political activism.

For example, cyberattacks aimed at disrupting government functions or stealing sensitive data are not unusual. During the ongoing conflict between Ukraine and Russia, Russian-affiliated groups have frequently launched cyberattacks on Ukrainian government entities, attempting to interrupt military operations and cause widespread disruption, says Checkpoint. 

Moreover, government agencies are attractive targets for state-sponsored cyber espionage efforts. These agencies hold valuable information, and hacking them allows attackers to steal sensitive data for political or economic advantage. Similarly, hacktivists, who use their technical skills to advance political or ideological causes, have targeted government institutions in an attempt to disrupt operations and spread messages.

Such attacks can vary in nature, including ransomware, data leaks, malware infections, and distributed denial of service (DDoS) attacks, all designed to either steal sensitive information, disrupt services, or demand a ransom for the return of stolen data. These types of attacks have become common, making governments frequent victims of cybercrime.

Cyberattacks against global government institutions escalated significantly in 2024. In Spain for example, just the first two months of 2024, 25,000 cyberattacks were recorded, marking a 190% increase compared to the same period in 2023, according to Observatorio Ciber. Other prominent cases have emerged, including the attack on the Spanish National Markets and Competition Commission, which resulted in the filtration of two billion sensitive records, and the hack of the Spanish Tax Agency, where 560GB of data was stolen, including taxpayer information.

The economic and reputational damage resulting from such attacks can be significant, affecting public trust in government institutions and potentially crippling essential public services like healthcare, education, and transportation.

The Role of Legislation and Preparation in Combating Cyberattacks

To effectively defend against these rising threats, Checkpoint recommends a multi-faceted approach to cybersecurity. Strengthening digital infrastructures by updating systems and implementing robust security measures, such as firewalls, intrusion detection systems, and advanced encryption, is essential. Additionally, training personnel to identify and mitigate risks is critical to reducing vulnerabilities created by human error.

Legislation and international cooperation are equally important. According to Observatorio Cinber, governments should adopt comprehensive legal frameworks that set clear guidelines for protecting sensitive data and penalizing cybercriminals. Furthermore, collaboration between countries is crucial in tackling cyberthreats that transcend borders.