Mexico's National Commission for the Protection and Defense of Users of Financial Services warns of fraudulent emails impersonating CONDUSEF to obtain sensitive information

Mexico's National Commission for the Protection and Defense of Users of Financial Services (CONDUSEF) issued an alert about fraudulent emails circulating that misuse its name and official-style language to deceive recipients who have not filed a complaint or claim with the authority. The messages falsely notify recipients of a formal complaint process, request confidential information or legal and financial documentation, and include links that redirect to external sites not belonging to official channels, often using urgency to prompt immediate action. CONDUSEF stressed it does not initiate or manage formal complaint procedures through such emails and does not request personal or financial data via external links or non-official sites, advising that messages with these characteristics should be treated as suspicious. Preventive guidance calls on financial institutions to activate cybersecurity and fraud-prevention protocols, escalate internally to compliance and technology functions, and train staff to detect impersonation emails, while the public is advised not to open links or download attachments from suspicious emails, not to share personal or banking data, and to verify any doubt through CONDUSEF’s official channels.