Malware, Ransomware Cyberattacks on Rise in Mexico

Mexico is among the countries most affected by cyberattacks, especially ransomware, which blocks access to data and demands users pay for its release, says Karspersky. The lack of awareness within organizations, the low investment in technological infrastructure, and the slow updating of systems have facilitated the proliferation of these threats, affecting both public and private institutions.

"For this 2025, a significant increase in the sophistication and customization of cyberattacks, especially ransomware, is expected. So an increase in the complexity of online scams is expected," says Vertigo Politico.

Accelerated digitalization in Mexico has transformed key sectors such as e-commerce, financial services, and critical infrastructure. However, this transition has also exposed significant vulnerabilities in digital security, especially around workforce weaknesses. Rigoberto Chinchilla, Professor of Cybersecurity Coordinator, Eastern Illinois University, tells El Economista that over 80% of cyberattacks originate through third-party services within companies themselves, with 95% of these security breaches attributed to human error, reflecting a lack of training and awareness in organizations.

Mexico has become a favorite target for cyberattackers. During 2024, Mexico recorded a total of 42.4 million attempted malware attacks targeting businesses, which equates to a daily average of 116,0000 attempts, or about 80 attacks per minute.

According to Kaspersky, 29.7% of these attacks primarily targeted the manufacturing industry, while government institutions accounted for 20.9% of attempted scams. On the other hand, the consulting firm also detected 835,000 hacking attempts on mobile devices in 2024, placing Mexico as the second most vulnerable country in Latin America, only after Brazil.

Given this scenario, companies have begun to adopt proactive strategies to strengthen their cybersecurity. Among the most prominent practices is the simulation of incidents, which allows for the identification of vulnerabilities in systems, applications, and networks before they are exploited by malicious actors, reports Sinaloa Hoy. These tests seek not only to prevent attacks, but also to ensure resilience in the face of possible incidents.

The financial sector has been a pioneer in implementing advanced protection measures, while other sectors, such as manufacturing and small and medium-sized enterprises (SMEs), face challenges due to budgetary constraints and lack of technical expertise. To address these gaps, some companies are developing customized solutions, supported by specialized teams that constantly monitor the latest attack techniques.

Reliance on external services has also been identified as a critical risk factor, Security Scorecard noted. The outsourcing of data and security management has increased exposure to cyberthreats, leading some organizations to insource these functions to reduce vulnerabilities. This trend reflects a shift towards a more holistic and autonomous approach to cybersecurity management.

"In Latin America there is a lag in terms of information technologies, since cybersecurity is seen as an expense, but it represents an investment for data protection," says Fabián Laurence Cárdenas Leonel, Advisor, Colombian National Police.