Search This Blog

Powered by Blogger.

Blog Archive

Labels

Showing posts with label Mexican government. Show all posts

Major Security Breach Hits the Mexican Government

 


According to the president of Mexico, a group of hackers stole a sizable chunk of emails from the Mexican Defense Department as well as those from police and military organizations in other Latin American nations.

Lopez Obrador, often known as AMLO, has dismissed worries about the growing militarization of public security, claiming that in order to avoid corruption, the guard must now be under military direction. Speaking at a  press conference, the president verified allegations about his own health issues and confirmed that the information from the Defense Ministry hack that had been reported in local media overnight was accurate.

Media reports claim that the hacker gained access to six terabytes of material from the Defense Ministry, including transcripts of communications, details about criminal characters, and surveillance of Ken Salazar, the American ambassador to Mexico.

The hack was minimized by López Obrador, who claimed that "nothing is uncertain." He claimed that the attack appeared to have happened during a system change at the Defense Department.

However, Chile was so concerned about the intrusion into its own systems that last week, while being in the United States with President Gabriel Boric for the UN General Assembly, it called the defense minister back.

Emails from the militaries of El Salvador, Peru, Colombia, and the National Police of El Salvador are also included in the 10 gigabytes of data that the organization has taken. The majority of the data seemed to come from Mexico.

Anonymous social justice activists going by the name Guacamaya claim to employ hacking to expose wrongdoing and corruption on behalf of Indigenous people. The emails of a mining corporation long suspected of violating human rights and the environment in Guatemala were previously breached and made public by hackers with the same identity.

The group lamented the colonists' pillage of Latin America, which it refers to as Abya Yala, in a statement that accompanied the most recent action, as well as the 'Global North's ' ongoing extractivist objectives.

Data theft method

In a statement, the hacking group said that governments in Latin American nations utilize their militaries and police forces to 'hold their inhabitant's prisoners,' frequently after receiving intensive training from the United States. Although the group promised to make the records available to journalists, so far only a small portion has been publicized, possibly due to the overwhelming amount of material.

The hackers claimed in an email exchange that their analysis of the Mexico emails up to that point revealed that a lot of the information had been widely known and that they didn't believe there were any destructive emails, potentially because more private exchanges were better secured. However, they claimed there was proof the military was paying close attention to political and social movements.

In addition to the Zapatista rebel movement, which managed an uprising in southern Mexico in 1994, and groups contrary to López Obrador's current effort to build a tourist train around the Yucatan Peninsula, they claimed that those included relatives of 43 students who were kidnapped by local police and allegedly given over to be killed by a drug gang in 2014.

Guacamaya appears to be more of a 'hacktivist' hack-and-leak operation with social justice objectives rather than a cyberattack targeting government information systems for financial gain or extortion.

The details of the leak were first revealed by Mexican journalist and well-known government critic Carlos Loret, who claimed that the data collected from the ministry demonstrated the extent of the military's power under Lopez Obrador, who has given the military responsibility for everything from infrastructure development to customs supervision.

In spite of criticism of alleged military abuses and worries that the government is militarizing public security, lawmakers adopted legislation this month expanding the role of the armed forces in combating crime.




Prometheus: Emerging Ransomware Group That Has Published Mexican Government Data For Sale

 

Emerging technology has changed the way we make money or hoard wealth, indeed as in the 21st century, information and data means money, and the spy groups that are compromising systems of large tech companies around the world including public and private organizations, have reached some sort of a pinnacle of sophistication. 

The last few years have witnessed a rapid surge in cyberattacks around the world and the consistency of these attacks has been growing dramatically. 

Recently, a new ransomware cyber gang identified as ‘Prometheus’ is making headlines, the group has become a threat to the Mexican Government as the threat actors published illegally compromised data on the dark web which was available for sale today itself. 

Following the aforementioned security incident, the group also became the first cyber-hacking group that has assailed the big state of Latin American at this level. 

Resecurity, a cybersecurity company out of Los Angeles while reporting about the attack said, the leaked data was compromised from the multiple e-mails handles as a result of ATO/BEC and leveraging network resources that belong to several Mexican government firms. The company also added that as of now, it is not easy to determine the extent of consequences and the end impact of the leaks. However, one thing is ascertained: it is an extortion game that has been played by malicious actors. 

As per the available data, Mexico is known as the big trading partner of the United States, the second-largest economy in Latin America, and the 17th-largest exporter around the world. In the past few years, the number of cybercrimes reported in the state has skyrocketed and in 2020, Mexico has become one of the countries with the most cybercrimes in Latin America. 

The data that has been leaked today on the website by the Prometheus group belongs to 27 victims. Some victims are from Hotel Nyack (New York, USA) Ghana National Gas, enterprises in France, and Tulsa Cardiovascular Center of Excellence (Oklahoma, USA), and others are from Switzerland, Norway, Netherlands, UAE, Brazil, and Malaysia. For the time being, The Institute for Security and Technology-coordinated Ransomware Task Force is conducting its research on the issue.