Rankiteo Logo
Rankiteo
Leader in Cyber Underwriting
Loading...
NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop
WindowsmacOSLinux
Download
Frost

Frost Vendor Cyber Rating & Cyber Score

frostbank.com

Frost provides banking, investments, and insurance services to businesses and individuals throughout Texas. Founded in 1868, Frost is now one of the 50 largest U.S. banks by asset size. Since the beginning, we have been committed to making people’s lives better — our clients and our coworkers. When you work at Frost, it’s about more than a job. It’s about creating and delivering great experiences every time we interact with one another. It’s about teamwork, collaboration, and a commitment from everyone involved. It’s about the person who greets our clients at the door to those developing the latest technology to help us serve our customers in ways no other bank can. It’s about banking on our values to provide excellent customer service


Frost A.I CyberSecurity Scoring

Frost
Company Information
Website:http://www.frostbank.com
Employees number:5,095
Number of followers:45,186
NAICS:52
Industry Type:Financial Services
Homepage:frostbank.com
Frost Risk Score (AI oriented)
Between 0 and 549
logo
FrostFinancial Services
Updated:
28/05/2026
355/1000
Critical
C
AaaAaABaaBaBCaaCaC
Powered by our proprietary A.I cyber incident model
Insurance prefers TPRM score to calculate premium
Frost Global Score (TPRM)
xxxx
logo
FrostFinancial Services
•••
Score locked
Instant access to detailed risk factors
Vulnerabilities
Benchmark vs. industry & size peers
Findings

Frost
FrostCritical
Current Score
355C (CRITICAL)
01000
3 incidents
-146 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
376Before Incident
JUNE 2026
369Before Incident
MAY 2026
350Before Incident
APRIL 2026
568Before Incident
Ransomware
20 Apr 2026Frost
Frost Bank, Citizens Bank and N.A.: Citizens Bank Data Breach: Edelson Lechtzin LLP Launches Investigation Into Exposure of Personal Information

Citizens Bank Hit by Ransomware Attack, 3.4 Million Records Exposed

342After Incident
CRITICAL-226
CITFRO1776918350
Citizens Bank Hit by Ransomware Attack, 3.4 Million Records Exposed On April 20, 2026, the Everest ransomware gang listed Citizens Bank, N.A. on its dark web leak site, claiming to have stolen approximately 3.4 million customer records. The breach, which also affected Texas-based Frost Bank, involved sensitive financial data, including names, home addresses, and account numbers. The hackers employed a common extortion tactic, giving the banks six days before publicly releasing the stolen data unless a ransom was paid. Citizens Bank, a subsidiary of Citizens Financial Group, operates across 14 states and Washington, D.C., serving customers in the Northeast, Mid-Atlantic, and Midwest. National class action law firm Edelson Lechtzin LLP has launched an investigation into potential legal claims on behalf of affected individuals, who may face heightened risks of identity theft and fraud. The firm is offering free case evaluations to those who received breach notifications from Citizens Bank. The incident underscores the growing threat of ransomware attacks targeting financial institutions, with cybercriminals increasingly leveraging stolen data for extortion. No further details on the breach’s origin or the banks’ response have been disclosed.
INCIDENT DETAILS -
TYPE
Ransomware
MOTIVATION
Extortion
IMPACT
Data Compromised: 3.4 million customer recordsLegal Liabilities: Potential class action lawsuitsIdentity Theft Risk: Heightened risks of identity theft and fraud
DATA BREACH
Type Of Data Compromised: Sensitive financial dataNumber Of Records Exposed: 3.4 millionSensitivity Of Data: HighData Exfiltration: YesNamesHome addressesAccount numbers
APRIL 2026
712Before Incident
Ransomware
16 Apr 2026Frost
Frost Bank and Sefas: Close to 200,000 Frost Bank customers affected by Sefas security breach

Sefas Data Breach Exposes Nearly 200,000 Frost Bank Customers

571After Incident
CRITICAL-141
SEFFRO1779972477
Sefas Data Breach Exposes Nearly 200,000 Frost Bank Customers Global software vendor Sefas disclosed a data security incident that compromised sensitive personal information of 191,848 Frost Bank customers. The breach, detected on April 16, 2026, involved unauthorized access to an SFTP server used for software support, with attackers downloading files containing customer data between December 2025 and April 2026. The exposed data included names, addresses, Social Security numbers, taxpayer IDs, account numbers, dates of birth, and loan numbers. Sefas confirmed the breach was contained to the SFTP server and ceased after April 16, with no evidence of further compromise. Frost Bank was notified on April 22, 2026, and the incident was reported to Texas state regulators. Separately, the Everest ransomware gang claimed responsibility for exfiltrating 250,000 Social Security numbers from Frost Bank, listing the bank on its dark web leak site in April 2026. The group did not disclose ransom demands or payment status, and Frost Bank has not publicly responded to the claims. Sefas has offered affected individuals one year of complimentary identity protection and credit monitoring through CyberScout. The investigation, supported by external cybersecurity experts, remains ongoing.
INCIDENT DETAILS -
TYPE
Data BreachRansomware
IMPACT
Data Compromised: Sensitive personal information including names, addresses, Social Security numbers, taxpayer IDs, account numbers, dates of birth, and loan numbersSystems Affected: SFTP serverIdentity Theft Risk: High
DATA BREACH
NamesAddressesSocial Security numbersTaxpayer IDsAccount numbersDates of birthLoan numbersNumber Of Records Exposed: 191848Sensitivity Of Data: HighData Exfiltration: YesPersonally Identifiable Information: Yes
MARCH 2026
780Before Incident
Breach
26 Mar 2026Frost
Cullen/Frost Bankers and Inc.: Frost Bank Data Breach Lawsuit Investigation

Cullen/Frost Bankers Data Breach Exposes Sensitive Information of Nearly 4,700 Individuals

709After Incident
CRITICAL-71
FRO1778783685
Cullen/Frost Bankers Data Breach Exposes Sensitive Information of Nearly 4,700 Individuals Cullen/Frost Bankers, Inc., a Texas-based financial holding company and parent of Frost Bank, recently disclosed a data breach affecting 4,698 individuals in the U.S. The incident was reported to the U.S. Department of Health and Human Services on March 26, 2026, though the company has not publicly revealed the cause or specifics of the breach. Founded in 1868 and headquartered in San Antonio, Cullen/Frost Bankers provides commercial and consumer banking, international banking, and wealth management services. Current and former clients of the bank may have had sensitive personally identifiable information (PII) compromised in the incident. Class action law firm Shamis & Gentile P.A. is investigating the breach and potential legal claims for affected individuals. Those impacted may be eligible for compensation as part of ongoing legal efforts.
INCIDENT DETAILS -
TYPE
Data Breach
IMPACT
Data Compromised: Sensitive personally identifiable information (PII)Legal Liabilities: Potential legal claims and compensation for affected individualsIdentity Theft Risk: High
DATA BREACH
Type Of Data Compromised: Personally Identifiable Information (PII)Number Of Records Exposed: 4698Sensitivity Of Data: HighPersonally Identifiable Information: Yes
FEBRUARY 2026
781Before Incident
JANUARY 2026
781Before Incident
DECEMBER 2025
781Before Incident
NOVEMBER 2025
781Before Incident
OCTOBER 2025
781Before Incident
SEPTEMBER 2025
781Before Incident
AUGUST 2025
781Before Incident

Frequently Asked Questions

?
What is the current A.I Rankiteo Cyber Score for Frost ?
?
What was Frost's A.I Rankiteo Cyber Score in June 2026 ?
?
What was Frost's A.I Rankiteo Cyber Score in May 2026 ?
?
What was Frost's A.I Rankiteo Cyber Score in April 2026 ?
?
What was Frost's A.I Rankiteo Cyber Score in March 2026 ?
?
What was Frost's A.I Rankiteo Cyber Score in February 2026 ?
?
What was Frost's A.I Rankiteo Cyber Score in January 2026 ?
?
What was Frost's A.I Rankiteo Cyber Score in December 2025 ?
?
What was Frost's A.I Rankiteo Cyber Score in November 2025 ?
?
What was Frost's A.I Rankiteo Cyber Score in October 2025 ?
?
What was Frost's A.I Rankiteo Cyber Score in September 2025 ?
?
What was Frost's A.I Rankiteo Cyber Score in August 2025 ?
?
What is the average per-incident point impact on Frost's A.I Rankiteo Cyber Score over the past 12 months ?
?
Where can I access detailed records of all cyber incidents associated with Frost ?
?
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ?
?
Where can I view Frost's profile page on Rankiteo ?
?
How accurate is the A.I Rankiteo Risk Scoring methodology ?