In Q3 2025, SMS toll fraud targeting the fintech sector grew by 97%, alongside a major spike in human fraud farm activity.

76% of banks and 78% of fintech companies reported needing more personnel to manage fraud risk effectively.

40% of fintech companies reported that onboarding is the core fraud battleground, highlighting the importance of this stage in fraud prevention.

26% of banks and 32% of fintech companies reported facing cases where users presented counterfeit or altered documents.

Sign-up fraud traffic in the Fintech sector escalated to 17 times the industry average.

Great Britain was responsible for 44% of attacks specifically targeting the Fintech sector.

Adoption of multi-factor authentication (MFA) in fintech is projected to increase from 23% to 31%.

52% of fintechs are evaluating AI-powered fraud detection tools.

38% of fintechs rate their fraud prevention as significantly ahead of competitors..

Technology products and services were linked to 63.9% of third-party breaches. File transfer software and cloud platforms were the most frequent points of compromise within this category.

Application Security and DNS Health were the most common weaknesses, with 46.4% of fintech companies scoring lowest in application security.

28.2% of fintech companies that experienced publicly reported breaches had multiple incidents.

Fourth-party exposures accounted for an additional 11.9% of breaches on fintech companies, which is more than double the global average.

41.8% of breaches impacting top fintech companies originated from third-party vendors.

18.4% of fintech companies experienced publicly reported breaches.

Fintech firms had the strongest security posture of any industry analysed, with a median score of 90 and 55.6% earning an “A” rating.

41.8% of breaches impacting top fintech companies originated from third-party vendors.