Mexico Sets Cyber Policy as Holiday Threats Intensify

This week, Mexico unveiled its National Cybersecurity Plan 2025–2030, the country’s first unified framework for digital defense, establishing prevention-first policies for critical infrastructure. Meanwhile, threat activity intensified sharply. FortiGuard Labs reported unprecedented automated attacks, while Kaspersky highlighted persistent gaps in investment prioritization that leave organizations reactive rather than resilient. In other news, with US$18 billion in data-center investments expected by 2030, industry players emphasized the need for security to evolve into a strategic enabler rather than a compliance function. 

Ready? This is your Week in Cybersecurity!

Mexico Unveils the National Cybersecurity Plan 2025–2030

Mexico’s Digital Transformation and Telecommunications Agency (ATDT) has introduced the National Cybersecurity Plan 2025–2030, a strategic framework designed to establish the first transversal state policy for digital defense in the country. This initiative aims to standardize critical infrastructure protection and position the country as a regional leader in cyber resilience through a centralized, prevention-focused model.

Holiday 2025 Sees Surge in Automated Cyberattacks, Stolen Logins

FortiGuard Labs reports an unprecedented acceleration in cyber threats for the 2025 Christmas holidays season, characterized by massive attack automation, malicious infrastructure expansion, and the compromise of more than 1.57 million e-commerce credentials. This increase in sophistication and volume results from strategic planning by threat actors seeking to maximize returns during the peak consumption season.

Mexican Leaders Struggle to Prioritize Cybersecurity Investments

Forty five percent of business leaders in Mexico do not know how to prioritize cybersecurity investments, and 66% of organizations lack a regular schedule for risk assessments, reveals Kaspersky. This problem forces companies into reactive operational models where they manage vulnerabilities only after critical incidents or external alerts occur, rather than preventing them through proactive governance.

Security Becomes Strategic Enabler for Mexico Data Center Boom

Mexico will capture over US$18 billion in direct investment for data centers and add 1,516MW of power capacity between 2025 and 2030, reports the Mexican Association of Data Centers (MEXDC). Under this scenario, Comexa warns that security protocols must evolve from operational requirements into strategic enablers to protect this critical infrastructure.

F5 Launches ADSP Program to Unify Multicloud Security

F5 expands its Application Delivery and Security Platform (ADSP) Partner Program with seven strategic technology allies — AppViewX, CrowdStrike, DigiCert, Kasm Technologies, Keyfactor, MazeBolt, and OPSWAT — to simplify multicloud security and accelerate the delivery of enterprise digital services.