Compromise Report 2026: why cybercrime in Latin America is stealthier than ever today

The report analyzes the main current trends in cybersecurity, the increase in threats in Latin America and the world, as well as the MITER tactics used by cybercriminals.

Lumu Technologies, the cybersecurity company that pioneered the Continuous Compromise Assessment® model, today presented its Compromise Report 2026, in which it identifies four major cybersecurity trends associated with the use of tools and techniques by criminals such as: anonymizers, droppers and downloaders, infostealers and ransomware.

Latin America, at the center of the expansion of cybercrime
The report shows a sustained increase in malicious activity in Latin America, driven by the rapid digitalization of strategic sectors and persistent gaps in security controls. In Central America and the Caribbean, Government (27.1%) and Telecommunications (22.9%) have the greatest exposure to infostealers, while in ransomware these same sectors register the greatest impact, with 27.7% and 16.6%, respectively.

In South America, Telecommunications (22.1%) and Government (17.5%) are the sectors most affected by infostealers, while ransomware mainly targets Telecommunications (23.3%) and Education (23.3%).

For its part, in Mexico the Telecommunications (22.2%) and Education (20.2%) sectors are the most impacted by infostealers, while in ransomware the highest levels of impact are concentrated in Education (35.7%) and Telecommunications (32.1%).

«This year we have observed a strategic change in attack methods, moving from highly visible malware to much more stealthy techniques. We no longer look for the enemy at the door; we must assume that he is already inside. Attackers have perfected the ability to camouflage their activity within legitimate tools and normal network noise, replacing brute force with behavior-based evasion, and favoring the use of anonymizers, DNS tunneling and domains generated with AI,» said Ricardo Villadiego, founder and CEO of Lumu.

«Our latest report serves as a battle plan for security leaders, breaking down the anatomy of these new invisible threats, from Keitaro to DeathRansom. Additionally, it highlights the importance of continuous monitoring, seamless tool integration, and the use of actionable threat intelligence,» adds Villadiego.

Source: www.itsitio.com