A hacktivist collective known as Chronus Group claims to have leaked 2.3 terabytes of data belonging to 36 million Mexican citizens. While the leak involves a massive portion of the population, government officials maintain the data originates from older breaches and contains no new sensitive information.
A hacktivist group called Chronus Group recently claimed responsibility for leaking 2.3 terabytes of data involving approximately 36 million people in Mexico. The breach reportedly includes information from 25 different government institutions, featuring personal details such as names, birth dates, and registration records for the public healthcare system. This incident represents a significant portion of the country's population, sparking concerns regarding the security of national digital infrastructure.
In response to these claims, Mexico's Agency for Digital Transformation and Telecommunications analyzed the leaked files and downplayed the severity of the event. The agency stated that the information appears to be a compilation of data from previous breaches rather than a fresh infiltration of current government systems. They further clarified that the compromised data originated from obsolete systems managed by private companies for state-level entities, asserting that no highly sensitive accounts were put at risk.
The incident highlights a growing trend of cyberattacks targeting Latin American organizations, which currently face thousands of attempted breaches every week. Beyond traditional cybercriminals, the region has seen an uptick in activity from state-sponsored actors and hacktivist groups. This surge in digital threats has made Latin America a primary focal point for global cybersecurity monitoring as malware and information-stealing software reach record levels.
Security experts note that the threat landscape in Mexico is becoming increasingly diverse and complex. The rise in credential theft and data leaks reinforces the urgent need for both public and private sectors to bolster their defensive capabilities. As attackers evolve their methods, the continuous strengthening of detection systems has become essential to protecting national interests and citizen privacy.
The Chronus Group itself operates in a gray area between political hacktivism and organized cybercrime. Having emerged around 2021, the collective is known for both ideological statements and the sale of stolen databases on the dark web. Their recent activities in Mexico underscore the persistent challenge of managing digital security when faced with groups that blend social messaging with criminal data exploitation.