Panorama del cibercrimen en América Latina y el Caribe

Insikt Group's 2025 LAC threat overview documents a sustained and evolving cybercriminal ecosystem across Latin America and the Caribbean: 452 ransomware incidents were recorded regionally, with health, manufacturing, government, IT and education most impacted; widespread use of infostealers (LummaC2, Vidar), banking trojans targeting WhatsApp and mobile NFC relay malware (PhantomCard, RelayNFC) were observed; APTs and hacktivists blended espionage and financially motivated activity; threat actors relied heavily on Telegram, dark web forums (DarkForums), phishing/smishing, exposed credentials and botnet infrastructure—exacerbated by outdated systems, weak MFA adoption and rapid digitalization—while Recorded Future/Insikt provide mitigation guidance including monitoring, patching and sector collaboration.