(Expansión) – A few weeks ago I came across material about a hacktivist group called #Guacamaya, which has managed to obtain information from the armed forces of different Latin American countries; Among the information I found issues related to the Secretary of National Defense (Sedena), however, for other issues I did not pay more attention until September 29.
The journalist Carlos Loret de Mola revealed. From my trench I have managed to check some of the things contained, however, analyzing 6tb of texts is a daunting task.
The lessons that begin to create greater internal capacities in the sense of cybersecurity are several and will begin to emerge in the days to come. First, we must make special emphasis on the fact that, if the defense forces in charge of national security have been violated, what is expected of a common user, a company, a banking institution? Perhaps the most null and non-existent awareness of cybersecurity and the value of your information.
It is not the same to talk about cybersecurity on a business scale -where there are guidelines, directives, policies, and examples of post-incident recovery-, than to talk about a breach on a national security scale; here the fact of making a contrast or comparison is not even allowed, that would simply denote the inexperience of an opinion expressed. National security in terms of cybersecurity works differently, with nuances of greater impact and often irreparable damage.
There is talk that as a result of the digital coup against Sedena, it is necessary to give impetus to the initiative of the “National Cyber Security Center”, which has already made progress; however, we are far from being able to talk about such an entity, because to talk about infrastructure, budget and investment are required, not austerity.
To talk about legislation, public policy is required, not forgetting what has been built in previous years such as the National Cybersecurity Strategy, in which the OAS collaborated directly to strengthen the cybersecurity capabilities of the Mexican State.
For the opportunists who think that this will be the solution to everything, they are very far from reasoning that there is a lack of a theme that manages to safeguard areas related to cybersecurity, at these levels it is not like installing an antivirus or selling a security solution, it is tries to think about the internal capacities of a country and the political nuances that permeate today, under the understanding of the consolidation of public policies as the basis of everything.
We start the month of cybersecurity, October, with some internal national incidents that require attention, if we leave cybersecurity as users in the hands of a simple software solution or think that no one would be interested in knowing our confidential information, we are lost, each data counts, and cybersecurity begins by recognizing that information is valuable, almost unquantifiable.
I invite readers to reflect, to ‘secure’ their environment, to delve into the digital ecosystem where today we have global convergence, and if they have any questions, they can approach it, to have greater cybersecurity.
Let the lessons of the hacking of Sedena begin…
Editor’s note: Carlos Ramírez Castañeda is a specialist and passionate about Computer Law, particularly in the areas of Cybersecurity, Cybercrime and Cyberterrorism. He has a Master’s Degree in Law of New Information and Communications Technologies from Santiago de Compostela Spain, Doctor in Administration and Public Policies from Mexico. He is a collaborator of various academic and government institutions, a professional always interested in cyber prevention issues, particularly with vulnerable sectors. Follow him on Twitter as . The opinions published in this column belong exclusively to the author.