Frost A.I CyberSecurity Scoring
Frost
Company Information
Website:http://www.frostbank.com
Employees number:5,095
Number of followers:45,186
NAICS:52
Industry Type:Financial Services
Homepage:frostbank.com
Frost Risk Score (AI oriented)
Between 0 and 549
FrostFinancial Services
Updated:
28/05/2026
28/05/2026
355/1000
Critical
C
Frost Global Score (TPRM)
xxxx
FrostFinancial Services
Score locked

FrostCritical
Current Score
355C (CRITICAL)
01000
3 incidents
-146 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
376
JUNE 2026
369
MAY 2026
350
APRIL 2026
568
Ransomware
20 Apr 2026 • Frost
Frost Bank, Citizens Bank and N.A.: Citizens Bank Data Breach: Edelson Lechtzin LLP Launches Investigation Into Exposure of Personal Information
Citizens Bank Hit by Ransomware Attack, 3.4 Million Records Exposed
342
CRITICAL-226
CITFRO1776918350
Citizens Bank Hit by Ransomware Attack, 3.4 Million Records Exposed
On April 20, 2026, the Everest ransomware gang listed Citizens Bank, N.A. on its dark web leak site, claiming to have stolen approximately 3.4 million customer records. The breach, which also affected Texas-based Frost Bank, involved sensitive financial data, including names, home addresses, and account numbers.
The hackers employed a common extortion tactic, giving the banks six days before publicly releasing the stolen data unless a ransom was paid. Citizens Bank, a subsidiary of Citizens Financial Group, operates across 14 states and Washington, D.C., serving customers in the Northeast, Mid-Atlantic, and Midwest.
National class action law firm Edelson Lechtzin LLP has launched an investigation into potential legal claims on behalf of affected individuals, who may face heightened risks of identity theft and fraud. The firm is offering free case evaluations to those who received breach notifications from Citizens Bank.
The incident underscores the growing threat of ransomware attacks targeting financial institutions, with cybercriminals increasingly leveraging stolen data for extortion. No further details on the breach’s origin or the banks’ response have been disclosed.
INCIDENT DETAILS -
TYPE
MOTIVATION
IMPACT
DATA BREACH
REFERENCES
APRIL 2026
712
Ransomware
16 Apr 2026 • Frost
Frost Bank and Sefas: Close to 200,000 Frost Bank customers affected by Sefas security breach
Sefas Data Breach Exposes Nearly 200,000 Frost Bank Customers
571
CRITICAL-141
SEFFRO1779972477
Sefas Data Breach Exposes Nearly 200,000 Frost Bank Customers
Global software vendor Sefas disclosed a data security incident that compromised sensitive personal information of 191,848 Frost Bank customers. The breach, detected on April 16, 2026, involved unauthorized access to an SFTP server used for software support, with attackers downloading files containing customer data between December 2025 and April 2026.
The exposed data included names, addresses, Social Security numbers, taxpayer IDs, account numbers, dates of birth, and loan numbers. Sefas confirmed the breach was contained to the SFTP server and ceased after April 16, with no evidence of further compromise. Frost Bank was notified on April 22, 2026, and the incident was reported to Texas state regulators.
Separately, the Everest ransomware gang claimed responsibility for exfiltrating 250,000 Social Security numbers from Frost Bank, listing the bank on its dark web leak site in April 2026. The group did not disclose ransom demands or payment status, and Frost Bank has not publicly responded to the claims.
Sefas has offered affected individuals one year of complimentary identity protection and credit monitoring through CyberScout. The investigation, supported by external cybersecurity experts, remains ongoing.
INCIDENT DETAILS -
TYPE
IMPACT
DATA BREACH
REFERENCES
MARCH 2026
780
Breach
26 Mar 2026 • Frost
Cullen/Frost Bankers and Inc.: Frost Bank Data Breach Lawsuit Investigation
Cullen/Frost Bankers Data Breach Exposes Sensitive Information of Nearly 4,700 Individuals
709
CRITICAL-71
FRO1778783685
Cullen/Frost Bankers Data Breach Exposes Sensitive Information of Nearly 4,700 Individuals
Cullen/Frost Bankers, Inc., a Texas-based financial holding company and parent of Frost Bank, recently disclosed a data breach affecting 4,698 individuals in the U.S. The incident was reported to the U.S. Department of Health and Human Services on March 26, 2026, though the company has not publicly revealed the cause or specifics of the breach.
Founded in 1868 and headquartered in San Antonio, Cullen/Frost Bankers provides commercial and consumer banking, international banking, and wealth management services. Current and former clients of the bank may have had sensitive personally identifiable information (PII) compromised in the incident.
Class action law firm Shamis & Gentile P.A. is investigating the breach and potential legal claims for affected individuals. Those impacted may be eligible for compensation as part of ongoing legal efforts.
INCIDENT DETAILS -
TYPE
IMPACT
DATA BREACH
REFERENCES
FEBRUARY 2026
781
JANUARY 2026
781
DECEMBER 2025
781
NOVEMBER 2025
781
OCTOBER 2025
781
SEPTEMBER 2025
781
AUGUST 2025
781
Frequently Asked Questions
?
What is the current A.I Rankiteo Cyber Score for Frost ??
What was Frost's A.I Rankiteo Cyber Score in June 2026 ??
What was Frost's A.I Rankiteo Cyber Score in May 2026 ??
What was Frost's A.I Rankiteo Cyber Score in April 2026 ??
What was Frost's A.I Rankiteo Cyber Score in March 2026 ??
What was Frost's A.I Rankiteo Cyber Score in February 2026 ??
What was Frost's A.I Rankiteo Cyber Score in January 2026 ??
What was Frost's A.I Rankiteo Cyber Score in December 2025 ??
What was Frost's A.I Rankiteo Cyber Score in November 2025 ??
What was Frost's A.I Rankiteo Cyber Score in October 2025 ??
What was Frost's A.I Rankiteo Cyber Score in September 2025 ??
What was Frost's A.I Rankiteo Cyber Score in August 2025 ??
What is the average per-incident point impact on Frost's A.I Rankiteo Cyber Score over the past 12 months ??
Where can I access detailed records of all cyber incidents associated with Frost ??
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ??
Where can I view Frost's profile page on Rankiteo ??
How accurate is the A.I Rankiteo Risk Scoring methodology ?