FIIG Securities A.I CyberSecurity Scoring
FIIG Securities
Company Information
Website:http://www.fiig.com.au
Employees number:80
Number of followers:11,981
NAICS:52
Industry Type:Financial Services
Homepage:fiig.com.au
FIIG Securities Risk Score (AI oriented)
Between 0 and 549
FIIG SecuritiesFinancial Services
Updated:
31/03/2026
31/03/2026
398/1000
Critical
C
FIIG Securities Global Score (TPRM)
xxxx
FIIG SecuritiesFinancial Services
Score locked

FIIG SecuritiesCritical
Current Score
398C (CRITICAL)
01000
3 incidents
-177 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
418
JUNE 2026
415
MAY 2026
406
APRIL 2026
405
MARCH 2026
396
FEBRUARY 2026
564
Breach
09 Feb 2026 • FIIG Securities
FIIG Securities: FIIG Securities hit with $2.5M penalty for cybersecurity failures
FIIG Securities Fined $2.5M for Cybersecurity Failures Leading to Client Data Breach
387
CRITICAL-177
FII1770674142
FIIG Securities Fined $2.5M for Cybersecurity Failures Leading to Client Data Breach
Australia’s financial regulator, ASIC, has secured its first penalty of this kind, ordering fixed income specialist FIIG Securities to pay $2.5 million for cybersecurity failures that resulted in a breach exposing the personal data of 18,000 clients. The incident marks a significant enforcement action under Australia’s financial services laws, underscoring regulatory scrutiny on cybersecurity compliance in the sector.
The breach stemmed from inadequate security measures, though specific details of the attack including the timeline and methods used remain undisclosed. The penalty reflects ASIC’s growing emphasis on holding firms accountable for safeguarding client information, particularly in industries handling sensitive financial data.
The case sets a precedent for future enforcement, signaling that cybersecurity lapses may carry substantial financial consequences for financial services providers. No further details on remediation efforts or client notifications were provided.
INCIDENT DETAILS -
TYPE
IMPACT
DATA BREACH
REFERENCES
JANUARY 2026
563
DECEMBER 2025
559
NOVEMBER 2025
555
OCTOBER 2025
552
SEPTEMBER 2025
548
AUGUST 2025
544
MAY 2023
718
Ransomware
19 May 2023 • FIIG Securities
FIIG Securities: FIIG Securities Fined AU$2.5 Million Following Prolonged Cybersecurity Failures
FIIG Securities Fined AU$2.5M for Prolonged Cybersecurity Failures Leading to Major Data Breach
397
CRITICAL-321
FII1770717211
FIIG Securities Fined AU$2.5M for Prolonged Cybersecurity Failures Leading to Major Data Breach
Australian fixed-income firm FIIG Securities has been fined AU$2.5 million by the Federal Court after failing to protect client data from cyber threats over a four-year period, culminating in a 2023 ransomware attack that exposed sensitive personal and financial information. The penalty marks the first time the court has imposed civil penalties for cybersecurity failures under an Australian Financial Services (AFS) license.
The breach, attributed to the ALPHV/BlackCat ransomware group, occurred in May 2023 when a hacker infiltrated FIIG’s network and remained undetected for nearly three weeks, exfiltrating 385GB of data. Compromised information included names, addresses, driver’s licenses, passports, bank details, and tax file numbers belonging to 18,000 clients. FIIG only learned of the incident after being alerted by the Australian Signals Directorate’s Cyber Security Centre (ASD’s ACSC) on June 2, delaying its internal investigation by six days.
The court found that FIIG had failed to implement basic cybersecurity measures between March 2019 and June 2023, including:
- Poorly configured firewalls and irregular software patching
- Lack of mandatory cybersecurity training for staff
- Inadequate privileged access management and multi-factor authentication (MFA)
- No up-to-date incident response plan or regular vulnerability scanning
- Ineffective endpoint detection and response (EDR) tools
- A poorly configured Security Information and Event Management (SIEM) system
FIIG admitted to violating its AFS license obligations, acknowledging that stronger controls could have prevented or mitigated the breach. In addition to the fine, the firm was ordered to pay AU$500,000 toward ASIC’s enforcement costs and must now implement a compliance program overseen by an independent cybersecurity expert.
ASIC Deputy Chair Sarah Court emphasized the case as a warning, stating that “inadequate controls put clients and companies at real risk”, while ASIC Chair Joe Longo stressed that cybersecurity requires continuous monitoring, not a “set and forget” approach.
The ALPHV/BlackCat group, known for using compromised credentials, PowerShell scripts, and Cobalt Strike to disable security features, later claimed responsibility for the attack. The breach was discovered only after an employee was locked out of their email, revealing encrypted files and wiped backups. While FIIG restored some systems, critical data was permanently lost.
The case sets a precedent for cybersecurity enforcement in Australia’s financial sector, with experts noting that regulators now expect firms to align protections with data sensitivity, business scale, and potential attack impact.
INCIDENT DETAILS -
TYPE
IMPACT
DATA BREACH
REFERENCES
MARCH 2019
753
Breach
01 Mar 2019 • FIIG Securities
FIIG Securities
FIIG Securities Data Breach
660
CRITICAL-93
FII946031525
FIIG Securities, an Australian financial services firm, faces legal action after a cybersecurity breach resulted in the unauthorized access and exposure of sensitive information belonging to 18,000 clients. From March 2019 to June 2023, FIIG reportedly had inadequate cybersecurity defenses, which led to a hacker penetrating their IT network and extracting about 385GB of confidential data, including client details, over a period from May 19 to June 8, 2023. The leaked information was later discovered on the dark web, posing significant risks to the affected clients.
INCIDENT DETAILS -
TYPE
MOTIVATION
IMPACT
DATA BREACH
REFERENCES
Frequently Asked Questions
?
What is the current A.I Rankiteo Cyber Score for FIIG Securities ??
What was FIIG Securities's A.I Rankiteo Cyber Score in June 2026 ??
What was FIIG Securities's A.I Rankiteo Cyber Score in May 2026 ??
What was FIIG Securities's A.I Rankiteo Cyber Score in April 2026 ??
What was FIIG Securities's A.I Rankiteo Cyber Score in March 2026 ??
What was FIIG Securities's A.I Rankiteo Cyber Score in February 2026 ??
What was FIIG Securities's A.I Rankiteo Cyber Score in January 2026 ??
What was FIIG Securities's A.I Rankiteo Cyber Score in December 2025 ??
What was FIIG Securities's A.I Rankiteo Cyber Score in November 2025 ??
What was FIIG Securities's A.I Rankiteo Cyber Score in October 2025 ??
What was FIIG Securities's A.I Rankiteo Cyber Score in September 2025 ??
What was FIIG Securities's A.I Rankiteo Cyber Score in August 2025 ??
What is the average per-incident point impact on FIIG Securities's A.I Rankiteo Cyber Score over the past 12 months ??
Where can I access detailed records of all cyber incidents associated with FIIG Securities ??
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ??
Where can I view FIIG Securities's profile page on Rankiteo ??
How accurate is the A.I Rankiteo Risk Scoring methodology ?