The National Electoral Institute (INE) accepts that your systems were hackedbut it was a breach of their systems what happened last year.
“Regarding a publication spread on social network X, through the account @ivillasenor, in which it is stated that a group of cybercriminals would be offering access to internal servers of the National Electoral Instituteviolating its operational network and the integrity of its computer systems, the Institute clarifies that The event you refer to corresponds to an incident recorded last year”.
You may also be interested in: Hack reported by the US was in another administration, clarifies the C5 of CDMX
The electoral authority asserted that the incidence due to cyber attack during the electoral periodthey treated her and she was contained in a timely manner.
“Current INE networks have multi-factor authentication (MFA) y other security controlsstrengthened as of that date and that prevent the use of previous access or credentials,” the Institute stated about the measures it now has.
VPN debugging and protection hardening
He added that “two months ago a full purge of active VPN accountscomplemented by the implementation and activation of two-factor authentication for all staff with remote access, thus strengthening institutional protection mechanisms”.
He reported that To date “there is no evidence of violation or indications of anomalous activity in the institutional systems. The technical areas of the Computer System Technical Unit (UTSI), in coordination with the Computer Security and Control Directorate (DSCI) and the cybersecurity provider, maintain a preventive review and permanent monitoring of technological infrastructure.
You may also be interested in: “Yes, they hacked my phone and my email account”: Sheinbaum
He reported that “a work session was held with the Secretariat of Security and Citizen Protection (SSPC) to define the inter-institutional coordination actions, as well as a technical meeting with the supplier to analyze the alleged data published on the dark web”.
He noted that “until now, no information that belongs to the INE has been identified nor evidence to support the statements spread. In parallel, the specialized cybersecurity provider carries out a independent analysis of materials circulating on the dark webwithout the veracity of the data or evidence of intrusion having been confirmed so far.”