Caja Popular Mexicana

Caja Popular Mexicana operates as a financial cooperative based in Mexico, providing core banking and credit services to its membership. The institution serves a significant client base, with reported disruptions affecting over 3 million members during a recent incident, indicating a substantial scale of operation within its market. Its service portfolio includes credit products and the facilitation of new account access, positioning it as a provider of essential financial tools for its cooperative members. As a cooperative, its structural model is member-owned, which distinguishes it from traditional shareholder-driven banks and aligns its operations with the financial needs of its participant base. The cooperative framework suggests a focus on community or sector-specific financial inclusion, though the precise demographic or occupational niche served is not detailed in the available information. Its headquarters location in Mexico anchors its regulatory and operational context within the national financial system. The organization's primary function is to offer accessible financial services, maintaining core transactional and lending operations for a large domestic membership.

The organization's recent history is notably defined by a severe cybersecurity incident. On October 6, 2023, Caja Popular Mexicana was the target of a ransomware attack attributed to the BlackCat cybercriminal group. This attack involved the encryption of data for ransom purposes rather than direct theft of customer funds, and no monetary losses to individual customers were reported. However, the incident caused significant operational disruption, forcing the interruption of branch services and online banking platforms. The recovery period saw persistent service limitations for credit products and new account origination, highlighting a material impact on business continuity. Regulatory authorities participated in the containment and forensic analysis efforts, underscoring the institution's role within the supervised financial sector. Cybersecurity experts analyzing the event pointed to potential deficiencies in the organization's security maturity as a contributing factor to the attack's severity. The total financial cost to the cooperative itself remains undisclosed, leaving the full economic consequence of the breach unknown. This event serves as a documented case of ransomware impact within the Mexican cooperative banking landscape.