In the past five years cyber criminals have found a way effective, accelerated and low cost to get a large amount of money that attacks the financial sector in Latin America, including Mexico, even when it comes to executing more complex attacks that require more time.
"Payment systems in Latin America and in Mexico have become new targets for attackers to see that it is very easy to make fraudulent transactions that originate from exploiting vulnerabilities in web services," said Miguel Ángel Mendoza, security researcher from ESET Latin American laboratories, in an interview to El Financiero.
After eight years of trying, the & # 39; cyber criminals & # 39; attack nails through vectors an attack called vulnerability exploitation, with which they managed to take advantage of failures in the financial sector system, such as violations registered in connection with the Interbank Electronic Payment System (SPEI) in Mexico carried out by groups with the characteristics of Persistent Advanced Threat (APT, for its acronym in Spanish). English)
El Financiero published on May 14 that during an attack carried out in April, there would be a robbery of around 400 million pesos, of which Banorte was the most affected bank with 150 million pesos.
"We have seen that cybeques are currently targeted and have focused on money extraction. This is a complex method by which they get higher numbers faster than if done with phishing campaigns or Denial of Service (DoS) techniques (other types of attacks), because the results will be slower and lower, "explained the specialist.
In 2018, 92 percent of banking institutions in Latin America suffer from cyber attacks, according to data from the Organization of American States (OAS). Mexico, Uruguay, Chile and Ecuador are among the most affected countries before this type of violation. The total loss in this region is unknown.
In the case of Mexico, even though the SPEI is not violated directly, cyber attackers damage the infrastructure where the bank is connected to the web system.
"That does not mean it will always be, maybe later they can find a way to do it. So far, deficiencies have been identified in how operations are carried out, either by the same process, in technology infrastructure or through attacks on supply chains from service providers, "explained the researcher.
The incurable reality, according to ESET research, is that vulnerability has become one of the main access doors for cyber criminals, who know that The risk of being arrested in this region is very low.
In 2017, 14,700 vulnerabilities were recorded, which represented a historic maximum in the region and doubled that reported in 2016, according to CVE Details.
Hand in hand with this report, the attacks on banking infrastructure emerged as a trend that will increase with more sophisticated modes of action, according to estimates by the World Economic Forum.
Why? Basically, Mexico and other Latin American countries are not protected both in terms of laws and cyberspace security in different digital sectors.
Therefore, it is necessary that in digital governance in the region be proposed:
Effective legislative framework to cover the field, and in turn that the bank is protected significant budget in cybersecurity, physical security, operations and trust control.
"In particular, standardization is needed to achieve the same level of security in web, process and operations infrastructure through the highly trained Cybersecurity Centers and incident response teams," Mendoza said.
Registration of these incidents in Europe has declined since the implementation of the General Data Protection Regulation (GDPR).
"When this law comes out, everyone is forced to make tools and change their privacy notices by including steps that imply all compliance. & # 39; GDPR & # 39; needed in Mexico so that each bank knows how to respond."
Cybertacks that look amazing have become common and represent one of the three biggest risks to the global economy, so they must be a priority part of the government's agenda and banking institutions.