Mexico Hits 14th Spot in Global Cyber Breach Rankings: Cyber Week

Mexico has experienced a concerning rise in cyber breaches, ranking 14th globally with nearly 2 million compromised accounts in 2023. Despite a record $9.1 million spent on cybersecurity during President López Obrador’s final year, experts caution that this investment is still insufficient. Regionally, Latin America faces a severe cybersecurity crisis, with 77% of companies reporting cyberattacks due to inadequate investment.

On the international stage, TikTok is under scrutiny from the DOJ for allegedly sharing US user data with its Chinese parent company, ByteDance. Additionally, North Korean hackers are implicated in a global espionage campaign targeting military secrets, while the EU grapples with a surge in Russian cyberattacks exploiting Microsoft infrastructure.

Ready? This is your Week in Cybersecurity!

Mexico

Mexico Among Top 15 Countries for Cybersecurity Breaches

In 2023, Mexico ranked 14th globally in cybersecurity breaches, with nearly 2 million accounts compromised—a 90% increase from 2022. Despite the rise in cyberattacks, investment in cybersecurity infrastructure remains insufficient, leaving user data highly vulnerable. The black market for stolen data thrives, with prices ranging from US$0.5 to US$30 per record, costing companies up to US$24 million per breach.

AMLO’s Last Year Sees Record US$9.1 Million Spent on Cybersecurity

In the final year of Andrés Manuel López Obrador administration, government spending on maintenance and cybersecurity hit a record high, with seven contracts totaling MX$169 million (US$9.1 million). Major agencies like Banobras and SEP led the acquisitions. Experts emphasize the need for increased cybersecurity investment due to Mexico's vulnerability to cyberattacks.

International

Underinvestment Drives 77% Cyberattack Rate in Latin America

In Latin America, 77% of companies in Latin America have experienced cyberattacks due to insufficient investment in security measures over the past two years, according to a study by Kaspersky. 

The report reveals that 75% of Latin American companies consider the cybersecurity incidents they have faced in the last two years to be serious. Of these incidents, 26% are attributed to intentional breaches of security policies by employees, a risk level comparable to the 30% caused by hackers.

TikTok Faces DOJ Charges Over US Data Sharing with ByteDance

The US Department of Justice (DOJ) has charged TikTok with secretly collecting data from US users and sharing it with its parent company, ByteDance, which could potentially transmit this information to the Chinese government. The DOJ alleges that this practice enables China to manipulate the app's content to negatively influence public opinion in the United States.

North Korean Hackers Steal Global Military Secrets

North Korean hackers, known as Anadriel or APT45, have conducted a global cyber espionage campaign aimed at stealing classified global military secrets to support Pyongyang's banned nuclear weapons program, according to a joint advisory issued by the United States, Britain, and South Korea. 

EU Microsoft Infrastructure Faces Surge in Russian Cyberattacks

The European Union (EU) has faced an increase in Russian-backed brute-force cyberattacks targeting corporate and institutional networks. These attacks exploit Microsoft infrastructure in Belgium and the Netherlands to avoid detection. According to Heimdal Security, over 50% of the IP addresses involved are linked to Moscow, with other sources located in Amsterdam and Brussels.