Respuesta-a-Incidentes

Image original source: bloka.red Cyberattacks go beyond financial costs, generating an “invisible cost” that seriously impacts the reputation and trust of companies, especially in Latin America. The lack of incident response plans in the region amplifies this problem, turning a safety crisis into a brand crisis with lasting consequences. The Reputational Impact in LATAM While the financial damage of a cyberattack—such as multi-million ransoms, service disruptions, and regulatory fines—grabs the headlines, the loss of trust is an equally serious, and often irreversible, consequence that is not reflected in accounting reports. ...

Cybersecurity company Trellix has announced that it suffered a breach that allowed unauthorized access to a “portion” of its source code. Incident Details Trellix reported having “recently” identified the compromise of its source code repository. Immediately following the discovery, the company began collaborating with “leading forensic experts” to resolve the matter and notified law enforcement authorities. Although the company has not disclosed the exact nature of the data that the attackers may have accessed, it emphasized that there is no indication that its source code has been affected or exploited. They stated: “Based on our investigation to date, we have found no evidence that our release process or source code distribution has been affected, or that our source code has been exploited.” ...

Crunchbase has confirmed a cybersecurity incident following claims by the cybercriminal group ShinyHunters, which claims to have stolen more than 2 million personal records from its systems. ShinyHunters leaked a 402MB zip file on its Tor website, stating that the data release was due to a failed extortion attempt. Crunchbase response to the incident The company has issued statements confirming the security incident, although it emphasizes that its operations were not affected. Crunchbase claimed to have contained the incident and that its systems are secure. ...

Endesa Confirms Security Incident Following Threat Actor Statement Spanish energy company Endesa has confirmed a security incident that resulted in unauthorized access to its trading platform, compromising customer data. Endesa is the largest electricity supplier in Spain, serving more than 10 million customers. Confirmation of the incident comes after a threat actor posted on a cybercrime forum claiming to have stolen 1.05 terabytes of company data. According to the Endesa Energía statement, the incident allowed “unauthorized and illegitimate” access to customers’ personal data. ...

Romania’s national water management authority, Romanian Waters (Administrația Națională Apele Române), confirmed being the victim of a ransomware attack during the weekend of December 20, 2025. According to the National Cybersecurity Directorate (DNSC), the incident affected approximately 1,000 computer systems in the central organization and in 10 of its 11 regional offices. Impact on IT and OT Systems The ransomware attack disrupted a variety of IT assets, including Geographic Information System (GIS) servers, databases, email and web services, Windows workstations, and domain name servers (DNS). ...

Multiple local authorities in London are dealing with a serious cybersecurity incident, it has recently emerged. The Royal Borough of Kensington and Chelsea (RBKC) and Westminster City Council (WCC) issued a statement saying they are responding to an incident identified on Monday morning. The incident has impacted several systems of both organizations, including telephone lines. Both entities have notified the UK Information Commissioner’s Office (ICO) and are collaborating with the National Cyber ​​Security Center (NCSC) for the response to the incident. ...