Major Infrastructure Projects Might Face Cybersecurity Threats

Experts caution that major federal projects like the Mayan Train and the Felipe Angeles International Airport (AIFA) may face cybersecurity threats. Insiders highlight the attractiveness of these projects to cybercriminals, driven by the potential for significant revenue gains due to their critical impact on numerous users. 

According to Víctor Ruíz, Founder and Director General, SILIKN, federal infrastructure projects like the Mayan Train, Dos Bocas Refinery, and AIFA are an appealing objective for cybercriminals as they are part of Mexico’s critical infrastructure, as they serve sectors that cannot halt operations. 

The inclusion of new technologies like automation and digitization make projects even more appealing for attackers. According to Vicente Magaña, Director General, ABB Mexico, ensuring preventive measures and constant monitoring of vulnerabilities is essential, as hackers follow cybersecurity upgrades. “For every preventive technology developed, someone who can hack will continue evolving; it is a constant evolution,” Magaña told Reforma, adding that the human factor is an element entities must closely follow.

Aligning with Ruiz's insight, Miguel Ambrosi, Commercial Director, IQSEC, highlights a correlation between digitized economies and a surge in cyberattacks. Ambrosi points out that states such as Nuevo Leon, boasting a 75% digitized economy due to its robust manufacturing sector, become more appealing targets for cybercriminals compared to less digitized states like Oaxaca, as reported by MBN.

Verónica Becerra, Co-Founder, OffHack, noted public entities are not the exception to the increasing number of cyberattacks, especially in the context of critical infrastructure development. She noted these works are vulnerable to threats like malware, social engineering, or denial of service (DoS). Furthermore, these projects are vulnerable to risks in operational technology (OT).  

While there is no direct evidence of vulnerability to any of the López Obrador administration's major infrastructure projects, there are records of vulnerabilities within the Mexican Ministry of Defense (SEDENA), the entity responsible for developing and overseeing these infrastructure initiatives. 

On Oct. 6, 2022, for example, MBN reported the leakage of SEDENA’s documents revealing the ministry’s intention to transform the state-owned company Grupo Aeroportuario, Ferroviario y de Servicios Auxiliares Olmeca-Maya-Mexica (GAFSAOMM) into a holding company responsible for overseeing AIFA, the airports of Palenque in Chiapas, Chetumal, and Tulum in Quintana Roo, and the Mayan Train. These leaked documents were obtained by the hacktivist group Guacamaya, known for targeting mining, oil and gas, and companies in various sectors.