Financial services companies are intensifying their efforts to bolster their defenses against the mounting threat of cyber crime. This proactive stance aims to safeguard their clients, customers, and the organizations themselves from increasingly costly hacks, as well as severe reputational damage that can arise from cyber attacks. The urgency is palpable as cyber criminals deploy more advanced technology to accelerate the speed and expand the scope of their attacks, requiring financial institutions to respond with agility and innovation.
Major banks such as JPMorgan Chase, Lloyds Banking Group, and Santander are ramping up their security measures to protect their infrastructure amidst a surge in cyber assault attempts. Financial institutions have long been prime targets due to their central role in the economy, vast financial reserves, and extensive customer data. This wealth makes them particularly attractive to cyber criminals looking to exploit vulnerabilities for financial gain or data theft.
Patrick Opet, Chief Information Security Officer at JPMorgan, highlights the accelerating nature of cyber threats: "More is changing now and faster than we have seen in a long time, the time to find and exploit vulnerabilities is drastically decreasing." This observation underscores the continuous evolution and sophistication of threats facing the financial sector.
According to IBM's X-Force 2026 Threat Intelligence Index, the finance and insurance sectors accounted for 27% of all cyber incidents in 2025, representing the second-highest share among all industries. The status of financial institutions as the backbone of modern economies makes them obvious targets. Cyber criminals are motivated not only by the potential financial rewards but also by the wealth of sensitive customer information that can be leveraged for further crimes.
Katherine Kearns, Head of Proactive Cyber Services at the consultancy S-RM, explains that "the ability to get paid in a ransomware scenario" serves as a major incentive for hackers targeting financial institutions. This financial motivation has rendered banks and similar entities particularly vulnerable and inviting targets for cyber attacks.
Historically, financial institutions have been pioneers in adopting advanced cybersecurity technologies. They were among the first to implement multi-factor authentication (MFA) to enhance user verification and to introduce strict supply chain protections to minimize risks emanating from third-party vendors. Such measures reflect the sector's ongoing commitment to cyber resilience despite evolving attack methods.
However, with the rise of new technologies like artificial intelligence (AI), the cybersecurity landscape is becoming increasingly complex. AI has both empowered defenders and armed cyber criminals with more efficient tools for their nefarious purposes.
The Impact of AI on Cybersecurity Threats
Experts warn that the rapid adoption of AI introduces new vulnerabilities by enabling cyber criminals to conduct highly sophisticated attacks. Research by Kroll, a financial and risk advisory company, reveals that 76% of organizations reported experiencing security incidents involving AI applications or models in the past two years.
AI facilitates various types of cyber attacks, including more convincing social engineering schemes. Threat actors are now capable of crafting highly realistic fake phone calls or employing "deepfake" videos that can deceive even seasoned professionals. This advanced social engineering significantly raises the stakes for security teams.
Nick Calver, Vice-President for the Financial Services Industry at Palo Alto Networks and a former cyber executive at Lloyds Bank and HSBC, shares his experience: "I received an email pretending to be from a big US bank and it looked absolutely perfect, it was well written, it had a LinkedIn profile and the only thing that got me suspicious was the email address." He warns, "It’s making threats more real and it’s only going to get more threatening."
The utilization of AI by cyber criminals extends beyond social engineering. AI has enhanced the ability of attackers to identify optimal points of entry into complex systems. This capability has led to a strategic shift where cyber criminals increasingly target supply chains, which are often considered the "soft underbelly" of their true objectives.
The dynamic nature of cyber threats driven by AI and other technologies demands that financial institutions and their cybersecurity advisors evolve rapidly to improve their defenses against these new challenges.
Strengthening Supply Chain Security in Financial Services
To mitigate risks associated with supply chain vulnerabilities, companies like Santander UK have implemented rigorous supplier audits and cybersecurity assessments. Thomas Harvey, Chief Information Security Officer at Santander UK, stated at the FT Cyber Resilience Summit in December that the bank regularly audits its partners to evaluate and improve their security postures.
"We have a lot of cybersecurity clauses which we stipulate within our agreements, we go through various cyber security assessments in the onboarding process, and we employ monitoring tools that oversee the external posture of our supply chain in case there are security changes," Harvey explained. These proactive steps help Santander mitigate threats before they materialize into full-blown breaches.
JPMorgan is also setting strict expectations for its suppliers. According to Opet, the company sent a letter in 2025 to its suppliers emphasizing the importance of robust security practices: "We said to suppliers that if you don't change your approach, we will stop buying." This hardline stance reflects the urgency with which financial institutions are viewing third-party security.
JPMorgan further proactively collects detailed information on all its suppliers to identify weaknesses in infrastructure or signs of pre-compromise. This enables early detection and mitigation of risks that could otherwise cascade into severe cyber incidents.
Leveraging AI to Enhance Threat Detection
In addition to threat detection through supplier management, Lloyds Banking Group has created the Global Correlation Engine, an AI-powered tool designed to identify cyber threats and reduce the frequency of false positives - alerts falsely identified as malicious activity. This tool helps streamline cybersecurity operations by allowing security teams to focus on real threats without being bogged down by misleading signals.
This innovative use of AI represents a positive deployment, giving financial institutions an edge in the fight against increasingly complex cyber attacks.
Re-Evaluating Cybersecurity Strategies and Internal Controls
The rapidly evolving threat environment has prompted many financial institutions to reassess what ‘good’ cybersecurity looks like. Brent Tomlinson, President of Risk Advisory at Kroll, notes that most cyber incidents today revolve around identity-related vulnerabilities, including social engineering and phishing attacks.
To combat this, companies are implementing more robust compliance training, rigorous awareness programs, and enhanced internal guardrails aimed at preventing such attacks. Strengthening human factors in cybersecurity - through regular education and vigilance - is recognized as a critical complement to technological defenses.
The Road Ahead
The escalating threat landscape has led cybersecurity experts to emphasize that financial institutions must maintain a stance of continuous preparedness. As cyber criminals refine their tactics with AI and other tools, companies must anticipate future threats and adapt their strategies accordingly.
This entails ongoing investment in innovative technologies, stringent vendor oversight, comprehensive employee training, and strategic incident response planning. Only through such multifaceted approaches can the financial services industry hope to preserve its essential role in the economy, while protecting sensitive data and financial assets from relentless cyber adversaries.
Safeguarding financial institutions from the growing and evolving world of cyber crime remains a top priority. Through concerted efforts in adopting cutting-edge technology, enforcing rigorous supply chain policies, and building resilience internally, financial services companies are working diligently to stay one step ahead of increasingly dangerous cyber threats.