CyberHappenings logo
Home Browse Watchlists Experimental About

Track cybersecurity events as they unfold. Sourced timelines. Filter, sort, and browse. Fast, privacy‑respecting. No invasive ads, no tracking.

Latin American Organizations Struggle with Cybersecurity Defenses and Skills Shortage

First reported
Last updated
1 unique sources, 2 articles

Summary

Hide ▲

Latin American organizations report low confidence in their nations' cyber defenses, with only 13% confident in their country's ability to protect critical infrastructure. The region faces a significant cybersecurity skills gap, with 69% lacking critical personnel and capabilities. Cyberattacks have surged by 53% year-over-year, driven by cybercrime syndicates from Southeast Asia and China. Latin American organizations now face an average of around 3,100 cyber threats per week, nearly double the 1,500 threats faced by US organizations. The lack of skilled professionals and investment in cyber resilience infrastructure hampers the region's digital progress, making it vulnerable to systemic risks. Phishing campaigns are particularly effective, and the healthcare and financial services sectors are heavily targeted.

Timeline

  1. 22.01.2026 18:05 2 articles · 1mo ago

    Latin America Faces Rising Cyberattacks and Skills Shortage

    Latin American organizations report low confidence in their nations' cyber defenses, with a 53% year-over-year increase in cyberattacks. The region struggles with a significant cybersecurity skills gap, with 69% lacking critical personnel. Cybercrime syndicates from Southeast Asia and China are increasingly active in the region, targeting critical infrastructure and financial systems. Latin American organizations now face an average of around 3,100 cyber threats per week, nearly double the 1,500 threats faced by US organizations. Phishing campaigns are particularly effective, and the healthcare and financial services sectors are heavily targeted.

    Show sources
    Open in new tab

Information Snippets

  • Only 13% of Latin American organizations are confident in their nation's cyber defenses, while 49% lack confidence.

    First reported: 22.01.2026 18:05
    1 source, 2 articles
    Show sources

  • Latin America experienced a 53% year-over-year increase in cyberattacks, 40% higher than the global average.

    First reported: 22.01.2026 18:05
    1 source, 2 articles
    Show sources

  • 69% of Latin American organizations lack critical cybersecurity personnel and capabilities.

    First reported: 22.01.2026 18:05
    1 source, 2 articles
    Show sources

  • Cybercrime syndicates from Southeast Asia and China have increased their presence in Latin America.

    First reported: 22.01.2026 18:05
    1 source, 2 articles
    Show sources

  • Brazil's financial system is a perennial target of cybercriminals, and Mexico faces cybersecurity challenges ahead of the 2026 FIFA World Cup.

    First reported: 22.01.2026 18:05
    1 source, 2 articles
    Show sources

  • 77% of respondents in Latin America and the Caribbean have experienced cyber-enabled fraud or know someone who has.

    First reported: 22.01.2026 18:05
    1 source, 1 article
    Show sources

  • Latin American organizations face an average of around 3,100 cyber threats per week, nearly double the 1,500 threats faced by US organizations.

    First reported: 05.03.2026 16:00
    1 source, 1 article
    Show sources

  • Ransomware attacks account for 5.4% of attacks in Latin America, compared to 3.1% in the US.

    First reported: 05.03.2026 16:00
    1 source, 1 article
    Show sources

  • Infostealers account for 5.3% of attacks in Latin America, compared to 2.1% in the US.

    First reported: 05.03.2026 16:00
    1 source, 1 article
    Show sources

  • Banking malware accounts for 2.8% of attacks in Latin America, compared to 0.8% in the US.

    First reported: 05.03.2026 16:00
    1 source, 1 article
    Show sources

  • Botnets account for 13.1% of attacks in Latin America, compared to 7.2% in the US.

    First reported: 05.03.2026 16:00
    1 source, 1 article
    Show sources

  • 95% of malicious files in the US are delivered via the Web, compared to 26% in Latin America, where email makes up the other 74%.

    First reported: 05.03.2026 16:00
    1 source, 1 article
    Show sources

  • Phishing campaigns are extremely effective in Latin America, particularly those impersonating financial institutions, payment notifications, invoices, travel confirmations, or government communications.

    First reported: 05.03.2026 16:00
    1 source, 1 article
    Show sources

  • Healthcare was the most victimized sector in Latin America, targeted around 28% more than the next most targeted sector (education).

    First reported: 05.03.2026 16:00
    1 source, 1 article
    Show sources

  • The financial services industry ranked as the sixth most targeted in Latin America, despite not making Check Point's Top 10 in the US.

    First reported: 05.03.2026 16:00
    1 source, 1 article
    Show sources

  • The overall cybersecurity maturity of countries across Latin America and the Caribbean is scored between 2 and 3 on a scale from zero to five.

    First reported: 05.03.2026 16:00
    1 source, 1 article
    Show sources

  • The high-profile supply chain incident at Brazilian fintech provider C&M Software involved an insider working with a cybercrime group, resulting in the theft of hundreds of millions of dollars.

    First reported: 05.03.2026 16:00
    1 source, 1 article
    Show sources

  • Many organizations in Latin America operate with mixed IT environments and uneven security investments, creating opportunities for attackers.

    First reported: 05.03.2026 16:00
    1 source, 1 article
    Show sources

  • Cybercriminal groups increasingly view Latin America as a high-return region for fraud and extortion, using relatively simple techniques such as phishing or credential theft.

    First reported: 05.03.2026 16:00
    1 source, 1 article
    Show sources

Similar Happenings

Ransomware Payouts Surge to $3.6m Amid Evolving Tactics

The average ransomware payment has increased to $3.6 million in 2025, up from $2.5 million in 2024. This 44% surge comes despite a decline in the overall number of attacks, indicating a shift towards more targeted and higher-stakes operations. The 2025 Global Threat Landscape Report from ExtraHop highlights that cybercriminals are adopting more disciplined strategies, focusing on fewer but more impactful attacks. Organizations in critical sectors, such as healthcare, government, and finance, are experiencing the most significant financial burdens, with average payouts reaching nearly $7.5 million in some cases. The report also identifies public cloud infrastructure, third-party integrations, and generative AI applications as the top sources of cybersecurity risk, complicating defense efforts.

Open in new tab

Microsoft reports surge in AI-driven cyber threats and defenses

Microsoft's Digital Defense Report 2025 highlights a dramatic escalation in AI-driven cyber attacks. Microsoft systems analyze over 100 trillion security signals daily, indicating the growing sophistication and volume of cyber threats. Adversaries are leveraging generative AI to automate phishing, scale social engineering, and discover vulnerabilities faster than humans can patch them. Autonomous malware adapts tactics in real-time to bypass security systems, and AI tools themselves are becoming high-value targets. Microsoft's AI-powered defenses have reduced response times from hours to seconds, but defenders must remain vigilant as AI increases the speed and impact of cyber operations. Identity compromise remains a dominant attack vector, with phishing and social engineering accounting for 28% of breaches. Multi-factor authentication (MFA) prevents over 99% of unauthorized access attempts, but adoption rates are uneven. The rise of infostealers has fueled credential-based intrusions. The United States accounted for 24.8% of all observed attacks between January and June 2025, followed by the United Kingdom, Israel, and Germany. Government agencies, IT providers, and research institutions were among the most frequently targeted sectors. Ransomware remains a primary threat, with over 40% of recent cases involving hybrid cloud components.

Open in new tab

Phishing and vulnerability exploitation dominate EU intrusions

Phishing and vulnerability exploitation were the primary methods of initial access in cyber-attacks against EU organizations over the past year. ENISA's Threat Landscape 2025 report analyzed 4875 incidents from July 1, 2024, to June 30, 2025. Phishing accounted for 60% of intrusions, followed by vulnerability exploitation at 21%. Outdated mobile devices and operational technology (OT) systems were identified as high-value targets. AI-powered phishing represented over 80% of social engineering activity worldwide by early 2025. The report also highlighted the growth of attacks targeting critical dependency points in the digital supply chain. DDoS attacks were the most frequent, accounting for 77% of reported incidents, with hacktivists being the dominant threat actor type.

Open in new tab

Increased Pressure on Security Teams to Conceal Breaches and Growing Attack Surfaces

The 2025 Cybersecurity Assessment Report by Bitdefender highlights a concerning trend where 58% of security professionals are pressured to keep breaches confidential. This trend is part of a broader issue where organizations are struggling to manage growing attack surfaces and misperceptions about AI-driven threats. The report, based on insights from over 1,200 IT and security professionals and an analysis of 700,000 cyber incidents, reveals significant gaps between leadership and frontline teams, particularly in prioritizing cybersecurity measures. The report underscores the increasing use of Living Off the Land (LOTL) techniques in high-severity attacks, which leverage legitimate tools within environments to bypass traditional defenses. This has led to a heightened focus on reducing the attack surface, with 68% of organizations prioritizing this effort. Additionally, there is a notable disconnect between executive perceptions of cyber risk management and the realities faced by mid-level managers, which could hinder effective cybersecurity strategies.

Open in new tab

Large-scale Africa-wide cybercrime crackdown arrests over 1,200 suspects

Operation Serengeti 2.0, an INTERPOL-led international operation, resulted in the arrest of 1,209 cybercriminals across Africa. The operation targeted cross-border cybercrime gangs involved in ransomware, online scams, and business email compromise (BEC). The operation, conducted from June to August 2025, involved law enforcement from 18 African countries and the UK. Authorities seized $97.4 million and dismantled 11,432 malicious infrastructures linked to attacks on 88,000 victims worldwide. Following this, Operation Sentinel, conducted between October 27 and November 27, 2025, led to the arrest of 574 individuals and the recovery of $3 million linked to business email compromise, extortion, and ransomware incidents. The operation took down more than 6,000 malicious links and decrypted six distinct ransomware variants. The cybercrime cases investigated are connected to more than $21 million in financial losses. Most recently, Operation Red Card 2.0, conducted between December 8, 2025, and January 30, 2026, resulted in the arrest of 651 suspects and the recovery of over $4.3 million. The operation targeted investment fraud, mobile money scams, and fake loan applications, identifying 1,247 victims and seizing 2,341 devices and 1,442 malicious websites, domains, and servers. The operation involved law enforcement agencies from 16 African countries: Angola, Benin, Cameroon, Côte d'Ivoire, Chad, Gabon, Gambia, Ghana, Kenya, Namibia, Nigeria, Rwanda, Senegal, Uganda, Zambia, and Zimbabwe. The operations were supported by data from private sector partners, including Cybercrime Atlas, Fortinet, Group-IB, Kaspersky, The Shadowserver Foundation, Team Cymru, Trend Micro, TRM Labs, and Uppsala Security. Cybercrime now accounts for 30% of all reported crime in Western and Eastern Africa and is increasing rapidly elsewhere on the continent. Interpol's 2025 Africa Cyberthreat Assessment Report noted that two-thirds of African member countries claim cyber-related offenses now account for a 'medium-to-high' (i.e., 10-30% or 30%+) share of all crimes. Interpol director of cybercrime, Neal Jetton, warned that the scale and sophistication of cyber-attacks across Africa are accelerating, especially against critical sectors like finance and energy.

Open in new tab