A hacktivist group called the Chronus Group claims to have leaked 2.3 terabytes of data that may include information on 36 million Mexicans. This data leak, if confirmed, would affect about 28% of Mexico's population. However, the Agencia de Transformación Digital y Telecomunicaciones (ATDT), the country's cybersecurity agency, downplayed the significance, asserting that the data is not from a new breach but rather a collection from previous incidents. They stated that no sensitive data has been published and that the compromised systems are largely outdated and managed by private entities. The situation reflects a growing trend of cyber threats in Latin America, where organizations are increasingly targeted by cybercriminals and hacktivists. Mexico experiences an average of 3,065 cyberattacks per week. Camilo Gutiérrez, a CISO at ESET, emphasized that the threat landscape is diverse and evolving, necessitating improved cybersecurity measures in both public and private sectors. The Chronus Group, while not yet a recognized threat, has increased its activities, primarily targeting Mexican government institutions. Analysts suggest that the group may have overstated the breach's extent, as the ATDT found no confirmation of critically sensitive information being released. Despite the lack of immediate evidence of significant compromise, the incident raises concerns about the security of government data and the resilience of Mexico's digital infrastructure. The ATDT has taken steps to mitigate potential damage, like revoking compromised access credentials and providing incident response. However, experts warn that these actions may not sufficiently address deeper systemic issues within the government's cybersecurity framework.