Telecommunications companies, such as CFE Telecomunicaciones, can access vast user information with the data provided when activating a telephone line, such as: identifying who you are talking to, how long a call lasts, who you maintain the most communication with; In addition, it is possible to access messages, know the political position, tastes or religion of a citizen, and even if the telephone number is used to authenticate to a system.
This industry has become a strategic point for States, thanks to the thousands of data that are transported through the companies’ networks, positioning itself as the new oil of nations. This has led experts to believe that behind the reform to make CFE TEIT public, there is the possibility that the government wants to use the information of its mobile phone customers for espionage purposes.
Víctor Ruíz, CEO of the cybersecurity company Silikn, explained that if the government is in charge of providing internet service, there is a risk that they and a network of cybercriminals will intercept their own connectivity networks.
“With telecommunications networks you can definitely monitor people and even track them, which is why I believe it is necessary for the government to manage transparent communication about the use and storage of citizens’ information that they will receive for granting internet,” Ruíz warned. .
Hiriam Alejandro Camarillo, CEO of Seekurity, a firm specialized in cybersecurity, explained that the intervention of a mobile device is simple and even more so for telecommunications providers. This can occur from sending a message to a cell phone and even from operating a modem to access all user information.
“In recent years the government has used Pegasus and with the issue of internet provision it could acquire more technology that would allow for more in-depth interference with users,” Camarillo warned.
The government has sought mechanisms that allow it to access citizens’ data. The last attempt was the National Register of Mobile Telephone Users (Panaut), which would force the 145.8 million users who currently have a telephone line to provide their personal and biometric data to combat telephone extortion.
Until now, the government has the ability to listen to and review the calls and messages of any person, because it often has access to the antennas and systems of telephone companies, thanks to articles 189 and 190 of the Law. Federal Telecommunications and Broadcasting Authority (LFTR) allow it. But with the approval of the reform so that the state company is the main player in providing the internet, the risk increases.
Data breach
The risk of espionage from the state company is not the only concern that looms, there is also the possibility of a breach of personal data. To access the services of the state telecommunications company, users must provide various data, including: CURP, RFC, INE, bank details and even biometrics such as fingerprint; However, the hacks perpetrated on government ministries and companies have demonstrated the lack of mechanisms and training to shield the information of their operations.
Since 2020, various government institutions have been hacked, such as Pemex, the National Lottery, the Mexican Social Security Institute (IMSS), Bancomext, the Ministry of Economy and the Federal Electricity Commission (CFE), which suffered the theft of a data base. data from 14.6 million customers.
Experts consulted by Expansión assured that there is always the risk of a database breach for companies, but agreed that the danger increases for the government and its agencies, whose personnel on many occasions “can extract information and even sell it,” in addition to that many of its elements in cybersecurity areas do not have the experience and training to shield the information of their operations.
“The government has neglected the digital and cybersecurity part. This suggests that it is likely that the infrastructure does not have adequate measures to secure user data. Because if someone violates this infrastructure, they could even have access to the data that the user transfers from their computer to their internet,” Caramillo warned.
And although until now CFE TEIT has not suffered cybersecurity problems because the marketing of its services is still limited, becoming public will mean that its potential market will increase, bringing with it greater challenges to protect consumer information.
“If it becomes the country’s internet provider, it requires strict policies that allow the protection of data from the infrastructure to the users. In addition to looking for how to guarantee the protection of user information and transparency about what information is being stored and for what purpose,” he assured. Víctor Ruíz, CEO of the cybersecurity company Silikn.
The manager has urged users to avoid the use of open networks that have been enabled by the government and even the state service because although it may be cheaper, the risk of data leakage and even espionage is higher.
Add Comment