A social listening study prepared by DataLab measured the conversation of Guatemalans through different social media platforms about cybersecurity in the country. The monitoring was carried out in the period between January 2023 and March 2026. During this time, around 43 thousand mentions on the topic were recorded.
41% of the digital conversation corresponds to a negative sentiment, while 2.3% refers to a positive sentiment and 56% maintains a neutral tone. The conversation was dominated on platform X, with 59.6%; online news, 18.8%; Facebook, 16.7%, and TikTok, 4.4%.
The main complaints made by Guatemalans refer to financial fraud (43.5%); followed by scams in electronic commerce (28.4%); phishing and data theft (17.8%), and fraud on social networks (10.3%).
According to an expert from the Cybersecurity Banking Community in Guatemala (Bancert), who preferred not to identify himself for security reasons, financial crime, scams and frauds have evolved in recent years. He added that, on previous occasions, banking institutions were usually exposed to attacks; Now, the most vulnerable people are the end users.
According to the expert, the most frequent cases are unrecognized consumption on credit and debit cards, forgery of signatures for check cashing, and improper access to bank accounts.
He mentioned that for criminal structures to commit this type of crimes, they require information from users, who, under deception, provide it. “A customer may not recognize a consumption on their card, but perhaps they received a link that said: ‘if you enter your card number here you will participate in an all-paid trip to the 2026 World Cup.’ The customer does not realize the URL where they entered and provides all their data,” he explained.
The expert indicated that providing the expiration date and security code information is enough for the criminal to begin carrying out transactions in other establishments. “Scams and frauds not authorized by the client through social engineering, such as the sale of a product, also expose the modality of making a transfer in exchange for something and the merchandise will never arrive,” he said.
Along these lines, the general director of Guatemala Digital, Mario Porres, agreed that the digital environment has facilitated new forms of fraud. “It’s very easy to do it, you just grab a card, memorize the number and you can buy online,” he explained.
According to Porres, the growth of e-commerce and remote transactions has expanded opportunities for criminals. “Before that option did not exist; now much is done remotely and lends itself to that ease,” he said.
Where do they complain the most?
According to the report, social network X concentrates the highest volume of conversation about cybersecurity. This tool is used by users as a space where they share alerts, complaints and personal experiences related to digital crimes.
During 2023, between May and June, the conversation on this platform revolved around digital fraud (scams, cloning and identity theft). In that year, the highest peak occurred in December 2023, due to massive cyber attacks and fraud, which represented 131% above the daily average conversation.
In July 2024, the conversation was marked by the increase in digital scams, including phishing practices on social networks, impersonation on WhatsApp and card cloning. According to the study, this shows the vulnerability of users and reinforces the need for greater cybersecurity education.
Users reported cases of card cloning, digital fraud and bank robberies, some with losses exceeding Q300,000. The use of phishing, fraudulent access and unauthorized transactions is frequently mentioned. The most mentioned scams occur mainly on platforms such as Facebook and WhatsApp. The most reported scams include fake job offers, fraudulent product sales, and malicious links sent in messages.
According to the Bancert specialist, criminals usually take advantage of high demand seasons, such as Easter. “The famous vacation homes in Monterrico that they promote on Facebook. They see a nice ad and deposit up to Q5,000 and the information was false,” he mentioned.
Unlike X, the conversation on Facebook does not originate mainly from user posts, but from comments within content published by media outlets, institutional accounts or public officials. The network is used as a space for reaction and citizen debate. Users amplify personal experiences related to digital fraud, e-commerce, and problems with financial institutions.
Top complaints include products not being delivered, incorrect or used items, and difficulties obtaining refunds. Users report experiences related to card cloning, unauthorized charges, and difficulties resolving cases with banks.
On TikTok, the study identifies an evolution in fraud modalities, especially in the transactional sphere. According to DataLab, between 2025 and 2026, various practices associated with scams in the purchase and sale of products and vehicles were consolidated.
Among the most frequent methods are the falsification of payment receipts, where the scammer simulates a transfer to obtain the product; the request for advance payments for non-existent goods and the triangulation of payments, a more complex modality that involves third-party accounts.
In addition, the study indicates an increase in cases of identity theft and exploitation of personal data through practices such as vishing – telephone spoofing – and account hijacking through malicious links sent by messaging applications.
Most frequent modalities
Regarding the modalities of fraud, the Bancert expert pointed out that, both locally and internationally, trends do not differ significantly, although some practices have changed over time. He explained that, although card cloning was previously one of the main threats, it has lost relevance due to the incorporation of chips. “The cloning part as such no longer exists, because if the card has a chip, it is no longer possible to do so,” he indicated.
However, this has not eliminated risk, but has given way to new ways of obtaining information. “Now there are other ways to know the card number; for example, for the client to click on a link and provide all their information,” he explained.
Porres added that the use of physical cards still represents a point of vulnerability. “That ease of a card with visible numbers is what still allows so much fraud; it is very appetizing for bad actors,” he said.
Another identified modality is the improper use of cards in stores. According to the Bancert expert, when the customer hands over their card to pay there is a risk that it will be manipulated out of sight. In addition, he mentioned practices detected in other countries, such as the installation of cameras in ATMs to capture information.
The growth of digital banking has also influenced the evolution of these crimes. “Since the pandemic, the migration of users towards electronic banking has increased greatly and, if they do not keep their credentials well, they can be stolen,” he noted.
Another increasing practice is the theft of messaging accounts, such as WhatsApp. “The criminal impersonates the person and writes to his contacts to ask for money or sell products; these are third parties,” he explained. According to the specialist, this type of crime has grown because it is easier to deceive a person than to violate a banking system. “It is easier to deceive a customer than to breach a system,” he mentioned.
Difficult detection
According to the Bancert expert, one of the main challenges in the fight against digital fraud is the identification of transactions that, from a technical point of view, usually appear legitimate, due to the way in which criminals operate.
He explained that, in many cases, the operations are carried out directly by the user, which reduces the chances of detection. “If they are scams and the customer made the transaction, therefore there is little indication that it is illegal,” he said.
As an example, he described schemes in which victims are progressively deceived through financial incentives. “They offer to earn money for simple tasks, they pay a first amount and then ask for deposits to continue participating,” he explained.
In these cases, the transactions comply with all the usual parameters: they are carried out from the user’s device, with their credentials and at normal times. “He did it with his phone, with his biometrics, with a token. It’s like the client did it,” he said.
For his part, Porres pointed out that there are even cases in which the cardholder himself can generate disputes in the transactions. “There have been cases where the customer makes the purchase and then reports that someone else made it,” he explained.
In addition, he warned that technological ease plays a double role. “Technology helps, but it also makes it easier for someone to use the data without having to have the physical card,” he said.
According to the Bancert expert, the main gap is not only technological, but also behavioral. “We believe that the point is in the user,” he said. In addition, he warned that technology, although it strengthens security systems, can also be used by criminals to commit illegal acts more easily.
More education required
The specialist highlighted the need to strengthen cybersecurity education as a key measure to reduce risks. The Bancert expert explained that many scams are based on emotional manipulation. “The majority is based on urgency or a quick benefit; if it is not done quickly, it is lost,” he indicated.
These types of strategies affect different segments of the population. “Young people are falling, but also adult people,” he said. Likewise, he pointed out that some cases are linked to the search for quick income or important purchase decisions.
For his part, Mario Porres emphasized the importance of developing verification habits before interacting with digital content. “You have to be careful, be informed, look carefully when they send you links, if it is something common or strange, it is better to investigate,” he recommended.
He also stressed the importance of checking web addresses and avoiding sharing sensitive information. “Never give data that should not be given, everything has to be done on a valid platform, not by phone or email,” he explained.
According to Porres, understanding how web addresses and links work is key to avoiding deception. “You have to read carefully before opening a link, make sure it is the correct domain and not something confusing,” he indicated.
In addition, he highlighted the need to adapt to new, safer technologies. “Methods such as cell phone payments are already being used, that reduces the risk if valid platforms are used,” he stated. Along these lines, he pointed out that there is still a lag in the adoption of these tools. “We still see many people who use plastic cards when they can use their cell phone. It is an issue of education,” he said.
The Bancert expert considered that prevention should be a shared effort. “It has to be a joint effort,” he indicated. In that sense, he mentioned that banking entities can carry out their procedures and notifications, but that the involvement of other institutions is also necessary; among them, the banking agencies, the Superintendency of Banks (SIB) and the Public Ministry (MP).
Find more Guatemala Doesn’t Stop on our video channels Free press and Guatevision, alliance content focused on solutions journalism.