Skip to main content
HomeTopicsFinancial Services

Financial Services

We've curated 174 cybersecurity statistics about Financial Services to help you understand how threats like phishing and fraud are impacting banking and investment practices in 2025. Stay informed on the latest protective technologies and strategies shaping the sector!

Showing 1-20 of 174 results

Direct ransomware attacks on financial institutions spiked 76% year-over-year in Q1 2026.

Black Kite6/6/2026
Ransomware

Across all financial services vendors, 50.2% carry high-severity CVEs.

Black Kite6/6/2026
Vulnerability ManagementCVEs

The number of distinct threat groups targeting finance increased from 37 in 2023 to 45 in 2024 and to 48 in 2025.

Black Kite6/6/2026
Threat Actors

Qilin was responsible for 59 finance-sector incidents in the past year.

Black Kite6/6/2026
Threat ActorsRansomware

From 2024 to 2025, the number of critical vulnerabilities carried across vendors serving the financial sector increased 387%.

Black Kite6/6/2026
VulnerabilitiesVendor Risk

Reported ransomware incidents targeting finance increased 30% from 2024 to 2025.

Black Kite6/6/2026
Ransomware

Among the 140 vendors whose client base is meaningfully concentrated in finance, critical vulnerabilities increased 181%.

Black Kite6/6/2026
Vendor RiskVulnerabilities

Critical-level patch management failures were present in 78% of the 140 vendors whose client base is meaningfully concentrated in finance.

Black Kite6/6/2026
Patch Management

Banks reported 71 ransomware disclosures in 2023 compared to 44 disclosures by investment firms, while by 2025 banks fell to 36 disclosures and investment firms rose to 84 disclosures (41.6% of all incidents).

Black Kite6/6/2026
Ransomware

54% of the 140 vendors whose client base is meaningfully concentrated in finance carry at least one vulnerability listed in CISA's Known Exploited Vulnerabilities (KEV) catalog.

Black Kite6/6/2026
Exploit CatalogsVendor Risk

423 financial services organizations appeared on dedicated leak sites, marking a 27% year-over-year increase.

CrowdStrike5/27/2026
Data LeaksData Leak Sites

Financial services applications faced a 91% attack rate in 2026, the highest recorded for any vertical.

Digital.ai5/27/2026
Application SecurityMobile Security

Hands-on-keyboard intrusions against financial institutions spiked 43% globally and 48% in North America over the past two years.

CrowdStrike5/27/2026
Hands-on-keyboard IntrusionsNorth America

DPRK-nexus actors stole a reported $2.02 billion in digital assets across the financial services sector in 2025.

CrowdStrike5/27/2026
Digital Asset Theft

FAMOUS CHOLLIMA doubled its operations using AI-generated identities to infiltrate cryptocurrency exchanges, fintech platforms, and consumer banks.

CrowdStrike5/27/2026
AI-Generated IdentitiesCryptocurrency

Financial service organizations outside of banking require 24 days to remediate exposures.

Intruder5/27/2026
RemediationVulnerability Management

Financial services accounted for 24% of all bot attacks and 46% of account takeover incidents.

Thales5/27/2026
Account TakeoverBot Attacks

36% of financial services organisations and 36% of IT & technology organisations report modernising most or all core systems, compared with 12% of public sector organisations and 19% of industrial organisations

Telstra International & Economist Impact5/27/2026
Legacy SystemsModernization

38% of bank leaders believe their primary regulator was understaffed or otherwise underresourced.

Bank Director5/27/2026
Regulatory OversightBanking

36% of bank leaders cite overreliance on one individual or function as a common gap found in tabletop cybersecurity exercises.

Bank Director5/27/2026
Operational RiskIncident Response