Cybersecurity lessons from Latin America’s battle against ransomware threats

This article is brought to you thanks to the collaboration of The European Sting with the World Economic Forum.

Author: Belisario Contreras, Senior Director, Global Security and Technology Strategy, Venable

• Cyber incidents in countries like Costa Rica and Colombia have prompted establishment of comprehensive cybersecurity policies across Latin America.
• The Cyber Readiness in Latin American Public Sectors: Lessons from the Frontline report outlines advanced cyber measures in the region.
• By following these guidelines, Latin American countries can strengthen their cyber defences and contribute to a resilient global cyber environment.

Latin American nations are intensifying their efforts to combat the growing threat of ransomware attacks, showcasing a defensive stance and a proactive approach to enhancing cyber resilience and innovation and protecting vital infrastructure.

Cyber incidents in countries like Costa Rica and Colombia have triggered a robust response across the region. Although these nations are in the early stages of establishing comprehensive cybersecurity policies, new research offers an optimistic outlook.

The Cyber Readiness in Latin American Public Sectors: Lessons from the Frontline report, jointly produced by the Digi Americas Alliance and its LATAM CISO Network in collaboration with Duke University, highlights the development of advanced cybersecurity measures in the region.

Discover

How is the Forum tackling global cybersecurity challenges?

The World Economic Forum’s Centre for Cybersecurity at the forefront of addressing global cybersecurity challenges and making the digital world safer for everyone.

Our goal is to enable secure and resilient digital and technological advancements for both individuals and organizations. As an independent and impartial platform, the Centre brings together a diverse range of experts from public and private sectors. We focus on elevating cybersecurity as a key strategic priority and drive collaborative initiatives worldwide to respond effectively to the most pressing security threats in the digital realm.

Learn more about our impact:

• Cybersecurity training: In collaboration with Salesforce, Fortinet and the Global Cyber Alliance, we are providing free training to the next generation of cybersecurity experts. To date, we have trained more than 122,000 people worldwide.
• Cyber resilience: Working with more than 170 partners, our centre is playing a pivotal role in enhancing cyber resilience across multiple industries: oil and gas, electricity, manufacturing and aviation.

Want to know more about our centre’s impact or get involved? Contact us.

It evaluates the efficacy of national policies and incident response strategies based on real-life cases from Colombia, Costa Rica, Chile and Panama, and includes insights from interviews with key stakeholders and data from surveys.

The report provides significant insight into how Latin American leaders proactively address these challenges. They are adopting risk management frameworks (RMFs) and leveraging public cloud technologies to strengthen their cyber defences.

Enhancing cybersecurity with risk management frameworks and cloud solutions

In the face of escalating ransomware risks and the need for greater data security, government officials acknowledge the critical importance of strengthening cybersecurity across public and private sectors.

Although there are still gaps in cyber readiness and response, there is a significant push towards building a cyber-resilient culture from the ground up. The US National Institute of Standards and Technology (NIST) Cybersecurity Framework (CSF) 2.0 is highlighted as a versatile tool that can be adapted to meet local needs.

Survey results from the report reveal strong support for risk management frameworks, with 94% of respondents agreeing that RMFs can enhance organizational resilience to cyber threats. Nearly three-quarters (72%) have integrated an RMF into their cybersecurity strategy, while those who have not cited resource constraints as the main barrier.

The adoption of cloud-based services is also on the rise in Latin America, driven by the need for improved security. According to the survey, 78% of respondents are using or planning to implement cloud-based cybersecurity infrastructure, recognizing it as a critical factor in strengthening their digital defences.

Comparative insights and regional trends on cyber responses

The LATAM CISO Report 2024 provides comparative insights from Colombia, Costa Rica, Chile and Panama, highlighting similarities and differences in cyber responses.

One key trend is a reactive approach, where countries strengthen their defences after experiencing attacks. Costa Rica’s case prompted the country’s declaration of a state of emergency and the development of a new national cyber strategy. In the case of Colombia, two bills were introduced to the Colombian legislature to create a technical and specialized digital security authority.

Another significant trend is the strength of international collaboration, with Latin American nations actively engaging in global dialogues and partnerships to strengthen cybersecurity measures.

Costa Rica, for instance, signed memorandums of understanding with several countries, including Israel, Japan and the United States, the latter of which has announced plans to provide $25 million in assistance to establish a cybersecurity operations centre by 2026.

Colombia has also pursued international collaborations to address cyber risks effectively, with this collective effort underscoring the importance of global cooperation in the fight against cyber threats.

Human capital development and education

An important aspect of the report is its focus on workforce development and education. Insights from interviewees in Colombia, Costa Rica, Chile, and Panama underscore the necessity to expand cybersecurity training programmes and foster cyber awareness across the public and private sectors.

The report recognizes that investing in talent and culture around cybersecurity is a foundational step that can drive maturity, resilience and risk reduction over time, benefiting organizations and citizens alike.

It recommends establishing comprehensive training programmes and educational initiatives to address these concerns and build a robust cybersecurity workforce. By enhancing human capital, Latin American nations can better detect, contain and recover from cyber incidents, reducing risks and improving overall cyber resilience.

This aligns with the World Economic Forum’s Strategic Cybersecurity Talent Framework 2024, which resonates with this need and emphasizes the importance of aligning cybersecurity education and training with global industry needs.

Future directions for enhancing cyber resilience

The Digi Americas Alliance and Duke University also provided key recommendations for Latin American governments to strengthen their cybersecurity measures:

• Investment in human capital: Significant investments in human capacity building are crucial. Comprehensive training programmes and educational initiatives will develop a skilled workforce across the public and private sectors, enhancing cyber resilience and fostering a cybersecurity culture.
• Establishment of a voluntary risk management framework: A voluntary RMF, which includes mixed governance, a national cybersecurity incident response team (CSIRT), and sector-specific incident databases, is needed. This cohesive structure improves the coordination and effectiveness of responses to cyber incidents.
• Strategic investment in cybersecurity infrastructure and technologies: Continued investments in cybersecurity infrastructure and technologies, including cloud solutions and security software, are crucial. This ensures the modernization of cybersecurity measures and defends against emerging threats.
• Centralized cybersecurity management and reporting systems: Establishing centralized cybersecurity management and reporting systems is recommended to ensure rapid and coordinated responses to cyber incidents. Centralized management enables quicker detection, assessment and resolution of cyber threats, while unified reporting systems streamline communication across sectors.

By following these guidelines, Latin American countries can strengthen their cyber defences and contribute to a more secure and resilient global cybersecurity environment. In facing the ever-growing cyber threats, the focus is on solidarity and collective defence against malicious actors aiming to compromise digital security.