Banking Finance Fintech News Risk Management Security

SecurityScorecard Threat Intel Report: 97% of Leading U.S. Banks Impacted by Third-Party Data Breaches in 2024

by Business Wire0
SecurityScorecard Threat Intel Report: 97% of Leading U.S. Banks Impacted by Third-Party Data Breaches in 2024

New report highlights growing risks in banking supply chains amid increasing third-party reliance

SecurityScorecard today released an in-depth analysis revealing that 97% of the top 100 U.S. banks experienced a third-party data breach in the past year, exposing significant vulnerabilities in banking supply chains.

As banks increasingly rely on third-party vendors for core functions, their exposure to supply chain vulnerabilities grows. Using the largest proprietary risk and threat intelligence dataset, SecurityScorecard’s experts analyzed how third-party breaches impact the banking sector. With these breaches posing serious risks, fully understanding external dependencies is essential for reducing exposure and maintaining resilience.

Read More: Keeping up with AI in Accounting: 5 Crucial Skills to Learn

Ryan Sherstobitoff, Senior Vice President of Threat Research and Intelligence, said:

“Nearly all major U.S. banks faced third-party breaches, exposing serious weaknesses across our interconnected digital ecosystem. The recent CrowdStrike incident underscored this fragility, showing how issues with just one vendor — even without a breach — can create widespread exposure and risk. For banks, these third-party vulnerabilities mean one compromised vendor could destabilize the entire financial system.”

Key findings

  • 97% of the largest U.S. banks reported third-party breaches, even though only 6% of vendors were compromised, showing the extensive reach of these incidents.
  • Nearly all (97%) of these banks also suffered fourth-party breaches, traced back to just 2% of vendors.
  • Each of the top 10 U.S. banks faced a third-party breach, underscoring risk across the industry.

Cybersecurity recommendations for the financial industry

Based on this analysis, the SecurityScorecard STRIKE team also offers actionable insights for enhancing cybersecurity in the banking sector:

  • Continuously monitor external attack surfaces: Implement automated scanning to detect IT infrastructure and cybersecurity risks across vendor and partner environments.
  • Identify single points of failure: Map the critical business processes and technologies to identify any single points of failure. Create a watch list with these vendors.
  • Automatically detect new vendors: Passively monitor vendors’ IT deployments to identify and resolve hidden supply chain risks.

Read MoreGlobal Fintech Series Interview with Frank Pagano, Executive Sales Director at VizyPay

[To share your insights with us, please write to psen@itechseries.com ]

Business Wire, a Berkshire Hathaway company, is the global leader in press release distribution and regulatory disclosure. Public relations, investor relations, public policy and marketing professionals rely on Business Wire for secure and accurate distribution of market-moving news and multimedia. Founded in 1961, Business Wire is a trusted source for news organizations, journalists, investment professionals and regulatory authorities, delivering news directly into editorial systems and leading online news sources via its multi-patented NX network. Business Wire’s global newsrooms are available to meet the needs of communications professionals and news media worldwide.

Related posts

CleanSpark Finalizes $35 Million in Financing from Trinity Capital

Fintech News Desk

Escrow Platform Launched By Manasquan Bank With ZSuite

Fintech Staff Writer

Daily Fintech Series Roundup: Top Fintech News, Analytics and Insights

Fintech News Desk
1