Cybersecurity Threats Grown in Mexico Amid Digital Growth

Mexico faces a panorama of growing cyberthreats that impact both large companies and small organizations. These threats could have broader consequences, such as the interruption of supply chains or the compromise of critical infrastructure, making cybersecurity a pressing need for businesses, governments, and individuals.

According to the World Economic Forum (WEF) Global Risks Report, cybersecurity is listed as one of the global risks for 2025. Cyberthreats have diversified beyond the theft of personal information and increasingly affect critical sectors such as energy and healthcare.

"There is a need to understand the short, medium, and long-term implications of these technologies for each organization's cybersecurity posture," reads the report. "Responding to this requires investment and talent acquisition that many organizations are unable or unaware of. As a result, the proportion of organizations that can protect themselves from cybercriminals or recover from a cyberattack is declining."

Mexico is in a critical position, with an average of 295 attempted malware attacks per minute, as reported by Kaspersky. This situation highlights the vulnerabilities in the national technological infrastructure, where the lack of resources in SMEs puts them at a higher risk of being victims of cyberattacks. According to the LatAm Cyber Summit 2024 Annual Report, most SMEs in the region lack security measures for their employees' mobile devices, one of the main entry points for cybercriminals.

The increasing digitization of services in the country, such as online payments and the adoption of digital banking platforms, increases exposure to cyberthreats. Data security, which in many cases relies on identity verification through biometrics or two-step authentication, is constantly challenged by increasingly sophisticated attacks.

The Need for a Comprehensive Approach to Cybersecurity

The current scenario calls for a more holistic approach to cybersecurity. Isolated measures are not enough as security must be a priority for companies of all sizes, as reported by Expansión. This approach is necessary to prevent a weak link in the security chain from compromising larger players.

Mexico’s recently launched Agency for Digital Transformation and Telecommunications (ATDT) marks a step toward improving the country's technological infrastructure. This agency aims to implement policies that facilitate the digitization of public procedures and services, which could significantly transform the relationship between government and citizens. However, its success will depend on how cybersecurity aspects are integrated into these policies.

"In recent years, digital transformation has become a strategic priority for governments and organizations around the world. In Mexico, connectivity gaps and lack of interoperability between systems have limited progress in the digitization of public services," reads the decree informing of the creation of ATDT.

Although the country has made advances in terms of connectivity and adoption of new technologies, gaps in the quality of digital infrastructure remain a challenge. In rural areas and small businesses, the lack of investment in cybersecurity continues to put millions of Mexicans at risk. As cybercrime evolves, preparedness and rapid response to potential incidents becomes key.