In her First State of the Union Address, Claudia Sheinbaum painted a picture of a modern, digital Mexico striving for technological sovereignty. The speech highlighted digital identity, space projects, nationwide connectivity, and new innovation-focused institutions. On the surface, it seemed like Mexico was preparing for the future.
But when the topic shifts to cybersecurity, the outlook quickly deteriorates. What’s portrayed as a solid strategy is, in reality, a collection of good intentions with no immediate execution. And that’s the problem: cyberattacks don’t wait. While plans are being drafted, cybercriminals are acting fast, exposing the state’s lack of preparedness.
At TecnetOne, we want to help you understand this scenario. Because this isn’t just a government issue—the lack of cybersecurity action affects businesses, users, and the daily lives of millions of Mexicans.
In the report, the government highlighted:
It all sounds great on paper. But the problem is time. While the administration celebrates drafts, cybercriminals are launching attacks measured in weeks, days, or even seconds.
Similar titles: Ransomware in Mexico: Cyberattacks Cause Major IT Sector Losses
Cyberattacks targeting Mexico show clear characteristics:
In this context, responding with unfinished policies is like facing a hurricane with a broken umbrella.
The government celebrated training nearly 3,000 young people in cybersecurity and programming through the Public School of Code. While any educational effort is positive, Mexico’s specialist shortage is measured in the tens of thousands.
Boasting such modest numbers isn’t enough. It sounds more like an attempt to show results than to solve the problem.
Talking about “digital sovereignty” or “space projects” rings hollow if basic priorities—like protecting government servers, securing critical infrastructure, or building a strong cybersecurity workforce—are still underdeveloped.
Another major concern is the absence of collaboration with the private sector and cybersecurity experts. So far, the government has not called for broad roundtables or commissioned studies involving independent specialists.
It seems to prefer the advice of politically aligned advisors—something we’ve seen before in other areas—and in cybersecurity, that could be extremely costly.
Cybersecurity isn’t a speech topic—it demands execution, expertise, and urgency. You don’t just need engineers. You also need ethical hackers, auditors, forensic analysts, psychologists, lawyers, and educators to cover every angle.
Any solid national strategy should rest on three pillars:
Invest in advanced solutions and apply security patches regularly. Don’t wait for local tech to become available—use the best on the market now.
Train every government employee (regardless of their level), and educate the public. A solid cybersecurity culture begins with understanding risks and how to act.
Adopt proven frameworks like ISO 27001 or NIST to handle incidents properly, with clear recovery procedures.
Also of interest: Mexican Water Infrastructure Under Fire: Rising Cyberattacks
The most urgent priority isn’t writing more plans—it’s executing measures now. Mexico is falling behind compared to the speed and agility of cybercriminals.
While we’re still debating drafts, attackers are already using:
If action isn't taken, we’ll continue to see:
This entire situation points to something Mexico has delayed for years: a Cybersecurity Law.
We need legislation that defines responsibilities, allocates resources, and puts enforceable rules in place to truly protect the country.
Once again, time is against us. Every day without a legal framework is another day criminals get ahead.
Ultimately, the issue isn’t what’s being said—it’s what’s not being done:
Cybersecurity in Mexico is in a dangerous limbo. What’s needed isn’t endless diagnostics or flashy presentations, but immediate action and coordinated response.
At TecnetOne, we believe protecting digital infrastructure is about protecting people’s lives. Cyberattacks aren’t a future threat—they’re a present reality. And trying to fight them with half-finished plans is as useless as trying to block out the sun with your hand.