Modern bank heists report 2025

Fewer than 25% of financial sector respondents are confident that their current security controls could mitigate a zero-day attack.

60% of financial sector respondents said their investments in XDR did not provide visibility into behavioural anomalies at the application layer.

82% of financial institutions overrely on web application firewalls (WAF).

64% of financial sector respondents reported experiencing cybersecurity incidents in the past 12 months.

38% of financial sector respondents reported a lack of visibility into the application layer as a concern.

Financial sector respondents reported a 12.5% increase in destructive cyber attacks.

Over two-thirds of financial sector respondents experienced attacks focused on stealing non-public market information.

71% of of financial sector respondents reported zero-day attacks as the key concern for safeguarding applications and APIs.

43% of financial sector respondents cited dwell time as a key concern.

61% of financial sector respondents consider their WAFs to be effective.

Over half of financial institutions experienced a supply chain attack.