Banco de Costa Rica Company Cyber Security Posture
bancobcr.comMisión: Impulsar el desarrollo social, la competitividad y la sostenibilidad de Costa Rica al ofrecerle a sus clientes un conglomerado financiero público de excelencia e innovación en todos sus servicios. Visión: Ser la opción preferida en Costa Rica por ofrecer a sus clientes estándares mundiales de calidad, innovación y eficiencia en servicios financieros. ¿Por qué nosotros? Para su tranquilidad, en el BCR estamos conscientes de que en un negocio de riesgo la seguridad es elemento esencial, por ello, en la toma de decisiones y adopción de políticas de administración, este concepto está siempre presente. Es por ello que, además del respaldo estatal, una política central del Banco es mantener provisiones y reservas muy por encima de los mínimos requeridos por la Superintendencia General de Entidades Financieras (SUGEF), así como seguir fortaleciendo la base patrimonial que se constituye en el mejor componente de la seguridad para nuestros clientes.
BDCR Company Details
banco-de-costa-rica
2233 employees
95936
522
Banking
bancobcr.com
Scan still pending
BAN_2396768
In-progress
BDCR Risk Score (AI oriented)Between 800 and 900
This score is AI-generated and less favored by cyber insurers, who prefer the TPRM score.
BDCR Global Score.png)
Banco de Costa Rica Company Scoring based on AI Models
| Model Name | Date | Description | Current Score Difference | Score |
|---|---|---|---|---|
| AVERAGE-Industry | 03-12-2025 | This score represents the average cybersecurity rating of companies already scanned within the same industry. It provides a benchmark to compare an individual company's security posture against its industry peers. | N/A | Between 800 and 900 |
Banco de Costa Rica Company Cyber Security News & History
| Entity | Type | Severity | Impact | Seen | Url ID | Details | View |
|---|---|---|---|---|---|---|---|
| Banco de Costa Rica | Breach | 100 | 4 | 02/2020 | BAN1941291222 | Link | |
Rankiteo Explanation : Attack with significant impact with customers data leaksDescription: Hackers gained access to the network of Banco BCR, the state-owned Bank of Costa Rica, and stole 11 million credit card credentials along with other data. This attack was conducted by the operators of the Maze Ransomware. Of these credit cards, 4 million are stated to be unique and 140,000 allegedly belong to people from the USA. As proof of this theft, Maze posted what they say are 240 credit card numbers, with the last four digits removed, along with expiration dates and credit card verification codes (CVC). | |||||||
Banco de Costa Rica Company Subsidiaries
Misión: Impulsar el desarrollo social, la competitividad y la sostenibilidad de Costa Rica al ofrecerle a sus clientes un conglomerado financiero público de excelencia e innovación en todos sus servicios. Visión: Ser la opción preferida en Costa Rica por ofrecer a sus clientes estándares mundiales de calidad, innovación y eficiencia en servicios financieros. ¿Por qué nosotros? Para su tranquilidad, en el BCR estamos conscientes de que en un negocio de riesgo la seguridad es elemento esencial, por ello, en la toma de decisiones y adopción de políticas de administración, este concepto está siempre presente. Es por ello que, además del respaldo estatal, una política central del Banco es mantener provisiones y reservas muy por encima de los mínimos requeridos por la Superintendencia General de Entidades Financieras (SUGEF), así como seguir fortaleciendo la base patrimonial que se constituye en el mejor componente de la seguridad para nuestros clientes.
Access Data Using Our API
Get company history
Rapid.png)
BDCR Cyber Security News
Costa Rica court rules state agencies violated press freedom with ad boycott
Costa Rica court rules state agencies violated press freedom with ad boycott · Source: Inter American Press Association · July 10, 2025.
Cybercriminals Steal $67,000 in Costa Rica Using Fake Bank Websites
Costa Rican and Colombian authorities have dismantled a transnational cybercrime ring that defrauded victims of over ₡35 million (about $67,000 ...
Costa Rica: Freedom on the Net 2024 Country Report
Costa Rica continues to have one of the world's most open online environments, where users enjoy unfettered access to online content and their rights to ...
Scotiabank Pullback Signals Global Banking Shift Away From Latin America
The shift has accelerated in recent years as exiting banks cite a combination of rising compliance costs and concerns over anti-money laundering ...
DeepSeek data exposed online due to unsecured database, claims cybersecurity firm
The cybersecurity firm reported that the database's configuration left sensitive records vulnerable to external access. Without authentication ...
The Dramatic Cyberattack That Put Latin America on Alert
The region is the world's most vulnerable to cyberattacks—and essential state services aren't safe. What can be done ...
International Cybersecurity and Data Privacy Outlook and Review – 2022
Client Alert | January 31, 2022. Click for PDF. For the fourth consecutive year, and complementing the publication of Gibson Dunn's upcoming tenth annual ...
#TopNews: Argentine banks nab Nubank exec for digital payments
All the key news from LatAm digital banking and fintech this week, including bank tech news and investment rounds.
EU and Latin America's great digital opportunity
Learn about the Global Gateway initiative, a digital opportunity for the EU and Latin America.
BDCR Similar Companies
National Bank of Canada
At National Bank, we believe in the potential of each individual, and that even the smallest gestures can make a big difference. When we help others accomplish their projects, we help empower them and the community at large. We try to make a difference through innovation, but above all, by puttin
Societe Generale
Societe Generale is one of the leading European financial services groups. Based on a diversified and integrated banking model, the Group combines financial strength and proven expertise in innovation with a strategy of sustainable growth. Committed to the positive transformations of the world’s soc
BNP Paribas Personal Finance
BNP Paribas Personal Finance is 100% BNP Paribas group subsidiary and the European leader in personal finance. With a presence in 33 countries, our customers, partners and employees write our company’s story as they share our philosophy: promote access to a more responsible and sustainable consumpti
Axis Bank
Axis Bank is the third largest private sector bank in India. The Bank offers the entire spectrum of financial services to customer segments covering Large and Mid-Corporates, MSME, Agriculture and Retail Businesses. The Bank has a large footprint of 5000 domestic branches (including extension count
Evergrowing Bank
Evergrowing Banking was established on 2003 after joint-stock system reform, now it has grown to a famous national joint-stock bank. The heaquarter of the bank is in city of Yantai, Shandong Province, with 11 tier-one branches in Qingdao, Jinan, Hangzhou, Chengdu, Chongqing, Yantai, Fuzhou, Kunming
IndusInd Bank
IndusInd Bank, which commenced operations in 1994, caters to the needs of both consumer and corporate customers. Its technology platform supports multi-channel delivery capabilities. As on March 31, 2022, IndusInd Bank has 2,265 Branches / Banking Outlet and 2,767 ATMs spread across 776 geographical
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
BDCR CyberSecurity History Information
How many cyber incidents has BDCR faced?
Total Incidents: According to Rankiteo, BDCR has faced 1 incident in the past.
What types of cybersecurity incidents have occurred at BDCR?
Incident Types: The types of cybersecurity incidents that have occurred incident Breach.
Incident Details
Can you provide details on each incident?
Incident : Data Breach, Ransomware
Title: Banco BCR Data Breach
Description: Hackers gained access to the network of Banco BCR, the state-owned Bank of Costa Rica, and stole 11 million credit card credentials along with other data. This attack was conducted by the operators of the Maze Ransomware. Of these credit cards, 4 million are stated to be unique and 140,000 allegedly belong to people from the USA. As proof of this theft, Maze posted what they say are 240 credit card numbers, with the last four digits removed, along with expiration dates and credit card verification codes (CVC).
Type: Data Breach, Ransomware
Threat Actor: Maze Ransomware operators
What are the most common types of attacks the company has faced?
Common Attack Types: The most common types of attacks the company has faced is Breach.
Impact of the Incidents
What was the impact of each incident?
Incident : Data Breach, Ransomware BAN1941291222
Data Compromised: 11 million credit card credentials, Other data
Payment Information Risk: High
What types of data are most commonly compromised in incidents?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Credit card credentials.
Which entities were affected by each incident?
Incident : Data Breach, Ransomware BAN1941291222
Entity Type: Bank
Industry: Financial Services
Location: Costa Rica
Customers Affected: 11 million credit card holders
Data Breach Information
What type of data was compromised in each breach?
Incident : Data Breach, Ransomware BAN1941291222
Type of Data Compromised: Credit card credentials
Number of Records Exposed: 11 million
Sensitivity of Data: High
Data Exfiltration: True
Personally Identifiable Information: Credit card numbers, expiration dates, CVCs
Ransomware Information
Was ransomware involved in any of the incidents?
Additional Questions
General Information
Who was the attacking group in the last incident?
Last Attacking Group: The attacking group in the last incident was an Maze Ransomware operators.
Impact of the Incidents
What was the most significant data compromised in an incident?
Most Significant Data Compromised: The most significant data compromised in an incident were 11 million credit card credentials and Other data.
Data Breach Information
What was the most sensitive data compromised in a breach?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were 11 million credit card credentials and Other data.
What was the number of records exposed in the most significant breach?
Number of Records Exposed in Most Significant Breach: The number of records exposed in the most significant breach was 11.0M.
What Do We Measure?
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
