Third-Party Risk
Cybersecurity statistics about third-party risk
Related Topics
Showing 21-40 of 44 results
34% of organizations partner externally for AI threat detection.
Individual TPRM professionals are responsible for 100 or more vendor relationships.
13% of the most mature TPRM programs view TPRM as little more than a compliance formality.
Financial institutions using manual TPRM processes report 50% lower satisfaction with their tools.
Nearly 87% of financial institutions use TPRM software.
63% of TPRM programs operate with just one or two dedicated full-time employees.
13% of TPRM programs have no dedicated staff.
67% of organizations with no TPRM processes view TPRM as little more than a compliance formality.
53% of TPRM programs manage 300 or more vendors.
10% of financial institutions still rely on spreadsheets, down from 13% in 2025.
61% of organizations are highly concerned vendors may use their security data to enrich AI services.
Third-party libraries and open-source dependencies account for 66% of the most dangerous, longest-lived vulnerabilities.
Vendor-related losses represent 18% of total losses in Resilience's 2025 claims portfolio.
Large supply chain and third-party compromises have nearly quadrupled since 2020.
55% of SMBs experienced third-party or vendor outages in the past 12 months.
66% of incidents involve the supply chain or a third party, up from 45% in 2024.
11% of leaders say they are aware of definite weak points when their data travels across third-party infrastructures.
32% of leaders do not know the locations of all of their data centers, rising to 49% when including third-party providers.
Confidence in data security falls to 40% when data passes through third-party provider networks.
70% of organizations experienced at least one material third-party cyber incident in the past year.