FIS
Company Details
Linkedin ID:
fis
Website:
Employees number:
46,189
Number of followers:
803,572
NAICS:
5415
Industry Type:
Homepage:
fisglobal.com
IP Addresses:
1466
Company ID:
FIS_7399804
Scan Status:
Completed
FIS Company CyberSecurity Posture
fisglobal.com
Unlocking financial technology. Bringing the world’s money into harmony. At FIS, we advance the way the world pays, banks, and invests. With decades of expertise, we provide financial technology solutions to financial institutions, businesses, and developers. Headquartered in Jacksonville, Florida, we’re a proud member of the Fortune 500® and the Standard & Poor’s 500® Index. Let's innovate together.
FIS A.I CyberSecurity Scoring
FIS Risk Score (AI oriented)Between 800 and 849
FIS
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
FIS Global Score (TPRM)XXXX
FIS
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
FIS Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
Fidelity National Information Services
Vulnerability
Rankiteo Explanation
Attack with significant impact with customers data leaks
Description: The Vermont Office of the Attorney General reported a data breach involving Fidelity National Information Services due to a cybersecurity incident associated with a software vulnerability in MOVEit. The breach occurred between May 27, 2023, and May 31, 2023, and may have exposed personal information, including names, addresses, Social Security numbers, and Valley loan numbers of affected individuals.
FIS Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for FIS
Incidents vs IT Services and IT Consulting Industry Average (This Year)
No incidents recorded for FIS in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for FIS in 2025.
Incident Types FIS vs IT Services and IT Consulting Industry Avg (This Year)
No incidents recorded for FIS in 2025.
Incident History — FIS (X = Date, Y = Severity)
FIS cyber incidents detection timeline including parent company and subsidiaries
FIS Company Subsidiaries
Unlocking financial technology. Bringing the world’s money into harmony. At FIS, we advance the way the world pays, banks, and invests. With decades of expertise, we provide financial technology solutions to financial institutions, businesses, and developers. Headquartered in Jacksonville, Florida, we’re a proud member of the Fortune 500® and the Standard & Poor’s 500® Index. Let's innovate together.
Loading...
FIS Similar Companies
Serco
We bring together the right people, the right technology and the right partners to create innovative solutions that make positive impact and address some of the most urgent and complex challenges facing the modern world. With a focus on serving governments globally, Serco’s services span justice,
Appen
Appen has been a leader in AI training data for over 25 years, providing high-quality, diverse datasets that power the world's leading AI models. Our end-to-end platform, deep expertise, and scalable human-in-the-loop services enable AI innovators to build and optimize cutting-edge models. We spec
Kyndryl
We have the world’s best talent that design, run, and manage the most advanced and reliable technology infrastructure each day. Together, we think holistically about the health of these vital technology ecosystems. We are a focused, independent company that builds on our foundation of excellence by
Experis Brasil
Talent and solutions to drive innovation. When it comes to IT, having the right talent and focus means you can harness the power of technology to make smarter, faster decisions; connect more strongly with your customers; and drive innovation in your marketplace. At Experis IT, our prowess in pro
Tata Elxsi
Tata Elxsi is amongst the world’s leading providers of design and technology services across industries, including Automotive, Media & Entertainment, Communications, and Healthcare. Tata Elxsi is helping customers reimagine their products and services through design thinking and the application of d
AeC
A AeC é apontada consistentemente como a líder brasileira na entrega de soluções de experiência do cliente e gestão de processos terceirizados. Servindo as principais marcas do mercado nacional, conquistou nos três últimos anos a posição de Empresa do Ano de BPO pela conceituada Frost and Sullivan
Canon EMEA
We are Canon Europe. We are the world's best imaging company. This page represents our offices in Europe, the Middle East and Africa. Founded in 1937, the desire to continuously innovate has kept Canon at the forefront of imaging excellence throughout its 85-year history and has commitments to inve
iSoftStone
iSoftStone is a global IT service and consulting company‚ÄØthat creates value and drives success through technology solutions, service excellence, and digital innovation. We specialize in web and application development, software testing and support, data and content management, digital experience,
Amazon Web Services (AWS)
Launched in 2006, Amazon Web Services (AWS) began exposing key infrastructure services to businesses in the form of web services -- now widely known as cloud computing. The ultimate benefit of cloud computing, and AWS, is the ability to leverage a new business model and turn capital infrastructure e
.png)
FIS CyberSecurity News
November 21, 2025 01:14 AM
Same attacks, more pain: Cyber security face up to exponential threats
Despite headlines about exponential escalation in the cyber attacks on governments and corporation, an expert says the core threats have...
November 14, 2025 08:00 AM
How CFOs can regain strategic control in times of economic volatility ft. FIS’ Chrissy Wagner and Seamus Smith
FIS executives discuss how CFOs are managing supplier volatility, leveraging AI in credit underwriting, and building data-first...
November 13, 2025 09:25 PM
Cyber Risk Redefines the Bottom Line for FIs
FIs face rising cyber complexity as threat actors evolve and insurers raise the bar. David Anderson, vice president of cyber at Woodruff Sawyer,...
November 12, 2025 08:00 AM
ST Engineering debuts quantum-safe cybersecurity suite for FIs
ST Engineering launched new quantum-safe cybersecurity solutions for financial institutions to support the transition to post-quantum...
October 31, 2025 07:00 AM
Digital Digest: The Latest Tech News – FIS Launches Asset Servicing Offering
Fintech business FIS® has launched an asset servicing offering, called FIS Asset Servicing Management Suite. It blends the traditionally...
October 08, 2025 07:00 AM
Top 10 Best Fraud Prevention Companies in 2025
Best Fraud Prevention Companies 1. Experian 2. Fiserv 3. LexisNexis 4. TransUnion 5. FIS Global 6. IBM 7. SAS Institute.
October 06, 2025 07:00 AM
Fintech boom, cybercrime surge: Latin America tightens digital defences
Explosive growth in fintech and AI adoption has made Latin America a prime target for cybercriminals. In response, governments are imposing...
September 18, 2025 07:00 AM
Why record keepers are becoming workplace financial wellness firms, ft. FIS
FIS executives Will Hicks, Sherry Baker, and Deloitte's Scott Parker discuss leveraging technology, data integration, and personalized...
July 30, 2025 07:00 AM
FIS and Circle partner to bring USDC to mainstream finance
Learn how the FIS and Circle partnership drives instant payments, enhanced fraud detection, and a lot more.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
FIS CyberSecurity History Information
Official Website of FIS
The official website of FIS is http://www.fisglobal.com/.
FIS’s AI-Generated Cybersecurity Score
According to Rankiteo, FIS’s AI-generated cybersecurity score is 806, reflecting their Good security posture.
How many security badges does FIS’ have ?
According to Rankiteo, FIS currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does FIS have SOC 2 Type 1 certification ?
According to Rankiteo, FIS is not certified under SOC 2 Type 1.
Does FIS have SOC 2 Type 2 certification ?
According to Rankiteo, FIS does not hold a SOC 2 Type 2 certification.
Does FIS comply with GDPR ?
According to Rankiteo, FIS is not listed as GDPR compliant.
Does FIS have PCI DSS certification ?
According to Rankiteo, FIS does not currently maintain PCI DSS compliance.
Does FIS comply with HIPAA ?
According to Rankiteo, FIS is not compliant with HIPAA regulations.
Does FIS have ISO 27001 certification ?
According to Rankiteo,FIS is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of FIS
FIS operates primarily in the IT Services and IT Consulting industry.
Number of Employees at FIS
FIS employs approximately 46,189 people worldwide.
Subsidiaries Owned by FIS
FIS presently has no subsidiaries across any sectors.
FIS’s LinkedIn Followers
FIS’s official LinkedIn profile has approximately 803,572 followers.
NAICS Classification of FIS
FIS is classified under the NAICS code 5415, which corresponds to Computer Systems Design and Related Services.
FIS’s Presence on Crunchbase
Yes, FIS has an official profile on Crunchbase, which can be accessed here: https://www.crunchbase.com/organization/fis.
FIS’s Presence on LinkedIn
Yes, FIS maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/fis.
Cybersecurity Incidents Involving FIS
As of December 14, 2025, Rankiteo reports that FIS has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
FIS has an estimated 37,712 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at FIS ?
Incident Types: The types of cybersecurity incidents that have occurred include Vulnerability.
Incident Details
Can you provide details on each incident ?
Title: Data Breach at Fidelity National Information Services
Description: The Vermont Office of the Attorney General reported a data breach involving Fidelity National Information Services due to a cybersecurity incident associated with a software vulnerability in MOVEit.
Date Detected: 2023-07-21
Date Publicly Disclosed: 2023-07-21
Type: Data Breach
Attack Vector: Software Vulnerability
Vulnerability Exploited: MOVEit
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Vulnerability.
Impact of the Incidents
What was the impact of each incident ?
Incident : Data Breach FIS454072625
Data Compromised: Names, Addresses, Social security numbers, Valley loan numbers
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Personal Information and .
Which entities were affected by each incident ?
Incident : Data Breach FIS454072625
Entity Name: Fidelity National Information Services
Entity Type: Company
Industry: Financial Services
Data Breach Information
What type of data was compromised in each breach ?
Incident : Data Breach FIS454072625
Type of Data Compromised: Personal information
Sensitivity of Data: High
Personally Identifiable Information: namesaddressesSocial Security numbersValley loan numbers
References
Where can I find more information about each incident ?
Incident : Data Breach FIS454072625
Source: Vermont Office of the Attorney General
Date Accessed: 2023-07-21
Where can stakeholders find additional resources on cybersecurity best practices ?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: Vermont Office of the Attorney GeneralDate Accessed: 2023-07-21.
Additional Questions
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on 2023-07-21.
What was the most recent incident publicly disclosed ?
Most Recent Incident Publicly Disclosed: The most recent incident publicly disclosed was on 2023-07-21.
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were names, addresses, Social Security numbers, Valley loan numbers and .
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were Social Security numbers, addresses, Valley loan numbers and names.
References
What is the most recent source of information about an incident ?
Most Recent Source: The most recent source of information about an incident is Vermont Office of the Attorney General.
.png)
Latest Global CVEs (Not Company-Specific)
Description
PCSX2 is a free and open-source PlayStation 2 (PS2) emulator. In versions 2.5.377 and below, an unchecked offset and size used in a memcpy operation inside PCSX2's CDVD SCMD 0x91 and SCMD 0x8F handlers allow a specially crafted disc image or ELF to cause an out-of-bounds read from emulator memory. Because the offset and size is controlled through MG header fields, a specially crafted ELF can read data beyond the bounds of mg_buffer and have it reflected back into emulated memory. This issue is fixed in version 2.5.378.
Risk Information
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Aircompressor is a library with ports of the Snappy, LZO, LZ4, and Zstandard compression algorithms to Java. In versions 3.3 and below, incorrect handling of malformed data in Java-based decompressor implementations for Snappy and LZ4 allow remote attackers to read previous buffer contents via crafted compressed input. With certain crafted compressed inputs, elements from the output buffer can end up in the uncompressed output, potentially leaking sensitive data. This is relevant for applications that reuse the same output buffer to uncompress multiple inputs. This can be the case of a web server that allocates a fix-sized buffer for performance purposes. There is similar vulnerability in GHSA-cmp6-m4wj-q63q. This issue is fixed in version 3.4.
Risk Information
cvss4
Base: 6.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A vulnerability was found in itsourcecode COVID Tracking System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/?page=zone. The manipulation of the argument ID results in sql injection. The attack may be launched remotely. The exploit has been made public and could be used.
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A vulnerability has been found in itsourcecode COVID Tracking System 1.0. Affected is an unknown function of the file /admin/login.php of the component Admin Login. The manipulation of the argument Username leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A flaw has been found in campcodes Online Student Enrollment System 1.0. This impacts an unknown function of the file /admin/register.php. Executing manipulation of the argument photo can lead to unrestricted upload. The attack can be launched remotely. The exploit has been published and may be used.
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=fis' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
