Verizon's DBIR 2025 report, compiled using data from organizations like SISAP, warns of growing risks in the corporate environment. The irresponsible use of tools like ChatGPT could be opening doors to cybercrime.

Guatemala City, August 2025 – Guatemalan companies are facing a new wave of cyber threats, more subtle but just as dangerous as traditional attacks. Verizon’s 2025 Data Breach Investigations Report (DBIR), in which SISAP participates as a regional data source, highlights two alarming trends: the accelerated growth of corporate espionage and the unregulated use of generative artificial intelligence in the workplace.

According to the report, cases of digital espionage increased by 163% globally in the last year. Furthermore, 15% of companies allow their employees to access platforms like ChatGPT from personal accounts, without protocols or oversight regarding the type of information shared.

"Companies in Guatemala are incorporating new technologies without establishing clear limits. The uncontrolled use of generative AI can expose confidential data without the organization even realizing it," explains José Amado, manager of the digital identities area at SISAP, a cybersecurity firm.

The report also reveals that 30% of security breaches involve third parties, such as suppliers, contractors, or external services, which is particularly relevant in Guatemala, where many organizations outsource critical functions such as customer service technology and finance.

"Corporate espionage no longer requires physical infiltrations or desirable hacks. Today, poor handling of digital tools or an insecure connection from a provider can be enough to compromise the entire operation," Amado adds.

As an organization that actively contributes data and intelligence to Verizon's DBIR, SISAP recommends the following to Guatemalan companies:

• Establish clear policies on the use of AI tools such as ChatGPT in the workplace.

• Audit and monitor the cybersecurity level of all external providers.

· Implement awareness programs on emerging threats such as cyber espionage and involuntary data leaks.

• Strengthen technical controls and monitoring processes to identify potential gaps.

"In cybersecurity, prevention costs less than remedy. Today's breaches not only affect systems, but also reputation and business continuity," Amado concludes.

With this data, the message is clear: companies must shift from reacting to preventing. In a changing digital environment, protecting information is no longer a luxury, but a critical corporate responsibility.

About SISAP

SISAP, Sistemas Aplicativos SA, is a company founded in Guatemala City in 1985, a leader in the Information Technology and Security market in 11 countries in the region. It has a broad portfolio of services and solutions focused on information security, with over 1,000 certifications that attest to the quality of service it provides to its clients.

With 40 years of experience, they are leaders in providing solutions and services to global clients, through a staff of more than 400 employees (60% are engineers), forensic laboratories, a cybersecurity institute, more than 100 allied brands, and various regional offices located in Guatemala, El Salvador, Honduras, Nicaragua, Costa Rica, Panama, Dominican Republic, Colombia, Paraguay, Mexico and the United States.

Press contact Gaby Aguirre

gaby@prevolucion.com

33843011