Geopolitical uncertainty is the biggest driver of emerging threats for banks and insurers according to the Operational Risk Horizon 2025 and Cyber Horizon reports, based on input from 47 leading global financial services firms. The benchmark studies ranked cybercrime in the top spot for the fourth consecutive year, ahead of other risk categories by a significant margin.
Third parties, ransomware and cloud driving cybercrime fears
Third party compromise is the top emerging cyber threat over both short and long term, with 92% of firms ranking this in their top five concerns for the next 6-12 months.
Ransomware attacks pose the second highest threat for 76% of firms in the short term (second overall), and 60% in the long-term (third overall).
Despite general consensus that the likelihood of a successful ransomware attack against a financial institution is low, the potentially devastating impacts are driving concern. Firms acknowledge that a successful ransomware attacks would have significant impacts on business disruption, customers and reputational damage and ultimately financial impacts. In addition, regulatory requirements are also driving a focus on ransomware.
AI on the rise
AI also featured heavily in the Cyber Horizon report, with the rankings of AI-related threats increasing over the longer term. The most significant jump is that of AI-enabled fraud – deepfakes (9th to 4th), while attack on AI models increases from 15th to 11th.
In addition to AI-related cyber threats rising in prominence over the next 12-36 months, AI was frequently indicated as a driver for other emerging cyber threats. AI is lowering the barriers to entry and increasing the volume and speed of attacks. It is also enhancing the sophistication of some attack types, for example AI-enabled spear phishing attacks and more convincing deepfakes.
Steve Bishop adds:
