Mexico’s financial sector is facing simultaneous pressure from more sophisticated cyberattacks against banking infrastructure and a sustained increase in digital financial fraud targeting consumers. While Banco de México reports more than MX$33 million in losses from cyber incidents affecting financial institutions in 2025, CONDUSEF data shows fraud claims continuing to rise in 2026.
Mexico’s financial sector is confronting a dual cybersecurity challenge. While banks continue strengthening defenses against attacks targeting their infrastructure, digital fraud against consumers is expanding alongside the country’s rapid adoption of online financial services.
These trends illustrate how cybercriminals are exploiting AI and other advanced technologies across multiple fronts, forcing financial institutions, regulators, and technology providers to accelerate their security strategies. Recent figures from Banco de México (Banxico) and the National Commission for the Protection and Defense of Financial Services Users (CONDUSEF) highlight how cyber risks are evolving beyond isolated incidents, turning into a broader business challenge that affects operational resilience, fraud prevention, and customer trust.
Cyberattacks Expose Growing Risks for Financial Institutions
According to Banxico, at least three Mexican financial institutions experienced cyberattacks during 2025, generating losses exceeding MX$33 million (US$1.8 million). Although none of the incidents directly affected customers, they demonstrate the growing operational and financial consequences of attacks against critical banking systems.
The reported incidents occurred in April, June, and August. Two attacks targeted automated teller machines, while another compromised an electronic application operated by a third-party provider, temporarily limiting electronic transfers for a limited group of customers. Banxico says the reported losses include incident response expenses, investments associated with managing the attacks and, where applicable, recognized fraud losses.
The attacks reflect a broader shift in the cyber threat landscape, where financial institutions increasingly face adversaries using automation and artificial intelligence to improve the scale and sophistication of their operations.
Álvaro Vértiz, Partner and Director, Dentons Global Advisors, says the primary challenge for Mexican banks and regulators is not limited to detecting attacks but also keeping pace with rapidly evolving technologies that simultaneously create business opportunities and new security risks. “Mexican banks show a moderate level of preparedness to detect and contain cyberattacks, with growing cybersecurity investments, but they face a sustained increase in incidents,” says Vértiz.
Among the most significant threats, Vértiz identifies AI-enabled deepfakes, automated phishing campaigns, and ransomware, all of which continue to represent common methods for compromising banking systems and sensitive information. He also notes that attackers continue exploiting users’ limited cybersecurity awareness, particularly among vulnerable populations.
Digital Fraud Expands Beyond Traditional Banking Threats
The challenge extends beyond attacks targeting financial institutions themselves. As digital banking adoption accelerates, fraud schemes directed at consumers are also becoming more frequent and technically sophisticated.
According to information published by El País, fraud-related claims filed against commercial banks between January and May 2026 increased 18% compared with the same period the previous year. Claims involving Popular Financial Societies (SOFIPOS) and Multiple Purpose Financial Companies (SOFOMES) rose about 49%, suggesting that digital fraud is expanding across the broader financial services ecosystem.
The increase reflects years of digital transformation across Mexico’s financial sector. Mobile banking, electronic payments and online financial services have expanded access for millions of users while simultaneously increasing the number of potential attack vectors available to cybercriminals.
CONDUSEF says criminals increasingly combine social engineering techniques with emerging technologies to produce fraudulent emails, text messages, phone calls, and websites that closely resemble legitimate communications from financial institutions or government agencies. Common attack methods include phishing emails and SMS messages, vishing through fraudulent phone calls, spoofing that imitates official telephone numbers, and AI-generated voices or videos designed to impersonate banks or family members.
The profile of fraud victims is also evolving. While older adults have traditionally represented one of the most affected groups, recent data indicates that claims are growing more rapidly among users between the ages of 18 and 29, a demographic that relies heavily on smartphones and mobile banking applications for everyday financial transactions.
Specialists attribute this shift to increasingly personalized attacks fueled by information collected from social media platforms, digital services, and compromised databases. AI allows criminals to generate convincing communications at greater scale, improving the effectiveness of fraud campaigns while making fraudulent messages more difficult to identify.
AI Is Reshaping Both Cyber Defense and Fraud Prevention
Mexico’s banking sector has made significant progress in cybersecurity, both through regulatory requirements and frameworks established by Banxico and the National Banking and Securities Commission (CNBV), says Leidivino da Silva, CEO, Stefanini Cyber. However, he says the current threat environment requires institutions to move beyond reactive defenses.
“Today, practically every financial institution has faced some form of attempted digital attack. The important issue is no longer how frequently attacks occur, but the organization’s ability to contain and recover from them,” says da Silva. He adds that the country’s largest financial institutions have invested heavily in infrastructure, monitoring capabilities, and continuous security operations. However, maturity gaps remain among medium-sized and smaller institutions, particularly regarding response speed, organizational readiness, and cybersecurity culture.
Da Silva also identifies human behavior as one of the most exploited vulnerabilities. Phishing attacks, poor credential management and inadequate cyber hygiene continue providing entry points for attackers despite advances in security technology. He says financial institutions should strengthen user authentication, network microsegmentation, and early anomaly detection while incorporating artificial intelligence into security operations.
“While a person may require 30 minutes to analyze a single alert, AI can review more than 3,600 cases during the same period. In eight hours, an automated system can process up to 28,000 alerts, resulting in significantly faster and more efficient protection,” says da Silva.
Authorities are also expanding collaborative efforts to combat financial fraud. CONDUSEF and Banking Protection (SEPROBAN) recently signed a cooperation agreement to strengthen fraud prevention, including a system capable of identifying telephone numbers used in fraudulent calls. During its first week of operation, the initiative detected about 5,000 suspicious numbers, supporting faster alerts for financial institutions and consumers.
The financial consequences continue extending beyond individual organizations. According to figures cited by El País, the Global Anti-Scam Alliance estimates that fraud-related losses in Mexico amounted to about MX$139 billion (US$7.9 billion) during 2025. Meanwhile, CONDUSEF reports that possible financial fraud accounted for 37.4% of all claims received during the first quarter of 2026.
Together, the rise in attacks against banking infrastructure and the growth of consumer fraud demonstrate that cybersecurity has become a strategic business priority for Mexico’s financial sector.