Cybercrime and the financial industry in the United States - Statistics & Facts
Cross-industry comparison
In the United States, healthcare, critical manufacturing, and government facilities are targeted by ransomware attacks most often . Nevertheless, financial institutions are proven to be among the main targets for ransomware attacks. Because of the complexity of the industry, financial services are often involved in cyberattacks indirectly, through third-party vendors.Most common types of financial cybercrime
In case of major cyberattacks, threat actors might use multiple attack techniques, such as launching DDoS and ransomware attacks at the same time while demanding ransom payment. Furthermore, some threat actors organize phishing and business e-mail compromise attacks simultaneously, and using social engineering techniques in fraud attempts. Additionally, the basic web application attacks are aimed mostly at financial institutions.In the United States, the amount of monetary loss due to financial fraud cases among seniors has increased immensely in recent years. The impersonation of payment systems is also a frequently detected cybercrime, with over 84 percent of incidents involving PayPal impersonation.
Data breaches due to financial cyberattacks
Between 2019 and 2023, the number of data compromise incidents involving financial institutions increased by over 330 percent . The most significant case of a data breach resulting from financial cyberattacks in the United States dates back to 2019 and was the leakage of over 885 million personal and financial data points at First American Financial Corporation. This incident was and still remains one of the biggest such cases worldwide.Monetary losses due to cyberattacks in the global financial industry rank as the second-highest after the healthcare industry for the third consecutive year.