Skip to main content
HomeTopicsThird-Party Risk

Third-Party Risk

Cybersecurity statistics about third-party risk

Showing 21-40 of 44 results

34% of organizations partner externally for AI threat detection.

HiddenLayer5/27/2026
AI Threat Detection

Individual TPRM professionals are responsible for 100 or more vendor relationships.

Ncontracts5/27/2026
Financial ServicesTPRM

13% of the most mature TPRM programs view TPRM as little more than a compliance formality.

Ncontracts5/27/2026
Financial ServicesTPRM

Financial institutions using manual TPRM processes report 50% lower satisfaction with their tools.

Ncontracts5/27/2026
Financial ServicesTPRM

Nearly 87% of financial institutions use TPRM software.

Ncontracts5/27/2026
Financial ServicesTPRM

63% of TPRM programs operate with just one or two dedicated full-time employees.

Ncontracts5/27/2026
Financial ServicesTPRM

13% of TPRM programs have no dedicated staff.

Ncontracts5/27/2026
Financial ServicesTPRM

67% of organizations with no TPRM processes view TPRM as little more than a compliance formality.

Ncontracts5/27/2026
Financial ServicesTPRM

53% of TPRM programs manage 300 or more vendors.

Ncontracts5/27/2026
Financial ServicesTPRM

10% of financial institutions still rely on spreadsheets, down from 13% in 2025.

Ncontracts5/27/2026
Financial ServicesTPRM

61% of organizations are highly concerned vendors may use their security data to enrich AI services.

Crogl5/27/2026
Security Data PrivacyAI Services

Third-party libraries and open-source dependencies account for 66% of the most dangerous, longest-lived vulnerabilities.

Veracode5/27/2026
Open Source RiskVulnerabilities

Vendor-related losses represent 18% of total losses in Resilience's 2025 claims portfolio.

Resilience5/27/2026
Vendor RiskInsurance Losses

Large supply chain and third-party compromises have nearly quadrupled since 2020.

IBM5/27/2026
Supply Chain

55% of SMBs experienced third-party or vendor outages in the past 12 months.

VikingCloud5/27/2026
SMBsOperations

66% of incidents involve the supply chain or a third party, up from 45% in 2024.

Barracuda2/22/2026
Supply Chain

11% of leaders say they are aware of definite weak points when their data travels across third-party infrastructures.

Arelion2/5/2026
Data SecurityEnterprise

32% of leaders do not know the locations of all of their data centers, rising to 49% when including third-party providers.

Arelion2/5/2026
Data VisibilityData Security

Confidence in data security falls to 40% when data passes through third-party provider networks.

Arelion2/5/2026
Data SecurityNetwork Security

70% of organizations experienced at least one material third-party cyber incident in the past year.

Marsh12/13/2025
Third-Party Cyber Incident