This week marked a critical inflection point in Mexico’s cybersecurity readiness, as the country advanced toward implementing a biometric CURP national ID by 2026, despite mounting data protection concerns. Globally, enterprises grapple with a new frontier of AI-powered threats: 65% of IT leaders admit their defenses are no longer sufficient, according to Lenovo. Meanwhile, Fortinet’s latest threat report shows that phishing and outdated software remain the most exploited vulnerabilities, underscoring persistent gaps in cyber hygiene. Topping it off, North Korea-linked hackers stole a record US$2 billion in crypto, a stark reminder of how geopolitical cybercrime is redefining global risk exposure.
Ready? This is your Cybersecurity Weekly Roundup!
Mexico
Mexico to Launch Biometric CURP in 2026 Despite Concerns
Beginning in January 2026, Mexico will implement a biometric National Population Registry Code (CURP) as its mandatory national identification document. While this technological transition aims to modernize and strengthen citizen authentication, it has raised a significant alert among cybersecurity specialists who warn of the risks inherent in centralizing sensitive information.
Mexico Prepares for Surge in Mobile Malware Ahead of USMCA Talks
Mexico faces a projected 70% increase in mobile malware attacks in 2025, a statistic that positions the country as the second most targeted in Latin America, reports Alianza Mexico Ciberseguro. This threat has catalyzed a coordinated response between the public and private sectors to strengthen national legislation and international cooperation frameworks, particularly within the context of the USMCA review.
Global News
AI Cyber Threats Overwhelm Modern IT Defenses: Lenovo
A new survey by Lenovo reveals that 65% of information technology (IT) leaders feel that their defense infrastructures are insufficient to neutralize cyberattacks powered by AI. Only 31% of the surveyed executives consider themselves adequately prepared for this new threat paradigm.
Phishing, Outdated Software: The Top Cyber Risks of 2025
A record increase in automated cyberattacks has cemented phishing and outdated software as the main security risks for 2025, reports the FortiGuard Labs Threat Landscape Report from Fortinet. Although the tools used by cyberattackers have evolved, the fundamental targets have not changed. Organizations must prioritize these two fronts to build a resilient defense.
Hackers Linked With North Korea Allegedly Steal US$2 Billion
Cyber actors linked to the North Korean government have allegedly stolen an estimated US$2 billion in cryptocurrency during 2025. The figure, reported by the blockchain analysis company Elliptic, is the largest annual amount recorded to date, highlighting an escalation in the sophistication and frequency of attacks attributed to the regime.
