Mexico's National Insurance and Surety Commission (CNSF) reported that it identified an information security incident on 30 January and activated its security and incident-response protocols, as well as contingency and business continuity plans. The exposed information related to intermediary certificates (cédulas) and was mostly public in nature. The CNSF said it continues to handle procedures for the review, authorisation and issuance of new certificates and will extend the validity of existing certificates until 28 February. It also indicated it will take legal action before the competent authorities regarding conduct that may constitute offences of this nature.
Mexico Comision Nacional de Seguros y Fianzas (CNSF) 2026-02-07
Mexico's National Insurance and Surety Commission reports information security incident and extends intermediary certificates until 28 February
Mexico's National Insurance and Surety Commission (CNSF) reported an information security incident involving intermediary certificates, mostly public in nature, on 30 January. The CNSF has activated security protocols and will extend the validity of existing certificates until 28 February. Legal action will be pursued for conduct potentially constituting offences.