Cyber Incident Victim: Grupo Carteleras
Date:
Mar 2017
Location:
Mexico
Summary
A digital billboard owned by Grupo Carteleras in Mexico City was compromised, displaying a pornographic video featuring a woman using an electronic toy. The incident occurred on a busy roadway, with visible TeamViewer interface elements suggesting potential remote access rather than a direct system breach. Social media users captured and shared footage of the altered display, amplifying public exposure. The company publicly denounced the attack as unauthorized computer interference, citing potential discomfort to bystanders, and engaged law enforcement for investigation. This event mirrors prior incidents globally where digital signage systems were similarly hijacked to broadcast explicit content.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 4 motives | 2 techniques |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On March 3, 2017, a digital billboard operated by Grupo Carteleras on a busy Mexico City roadway was compromised, displaying a pornographic video for several minutes. The video depicted a woman using an electronic toy on herself, accompanied by a visible TeamViewer warning tab on the screen. Technical indicators suggested the billboard’s control system—running Microsoft Windows with either Internet Explorer or Edge as the browser—may have been accessed remotely via TeamViewer rather than through a conventional external hack. The incident occurred during operational hours, exposing passing drivers and pedestrians to explicit content. Multiple witnesses recorded the compromised billboard and shared footage across social media platforms, particularly Twitter, where user @mica_medero referenced prior organizational communications within the company. Public reactions focused on the novelty of the incident, with no immediate reports of traffic disruptions or direct complaints from affected individuals documented in available sources.
Grupo Carteleras publicly acknowledged the incident via Twitter on March 3, denouncing it as a “computer attack” and expressing concern over potential discomfort to passersby. The company engaged law enforcement authorities to investigate the breach but did not disclose specifics regarding internal reviews or technical findings. No claims of responsibility or threat actor attribution were reported. Historical context indicates this was not an isolated event: Similar billboard defacements with pornographic content occurred in Indonesia (October 2016) and Brazil (2015), though no evidence suggests operational or tactical links between these incidents. The Mexico City breach highlighted vulnerabilities in publicly accessible digital signage systems, particularly those reliant on remote-access tools like TeamViewer without apparent safeguards against unauthorized use. Grupo Carteleras did not release further details about mitigation measures, system changes, or investigation outcomes following the event.