Bank of America Company Cyber Security Posture
bankofamerica.comBank of America is one of the world's largest financial institutions, serving individuals, small- and middle-market businesses and large corporations with a full range of banking, investing, asset management and other financial and risk management products and services. The company serves approximately 56 million U.S. consumer and small business relationships. It is among the world's leading wealth management companies and is a global leader in corporate and investment banking and trading. This LinkedIn company page is moderated. For more information, please visit: https://bit.ly/32FDdQr. For account issues, please visit: https://bit.ly/2GeTIeP.
BA Company Details
bank-of-america
219382 employees
2675230.0
522
Banking
bankofamerica.com
Scan still pending
BAN_2333718
In-progress
BA Risk Score (AI oriented)Between 800 and 900
This score is AI-generated and less favored by cyber insurers, who prefer the TPRM score.
BA Global Score.png)
Bank of America Company Scoring based on AI Models
| Model Name | Date | Description | Current Score Difference | Score |
|---|---|---|---|---|
| AVERAGE-Industry | 03-12-2025 | This score represents the average cybersecurity rating of companies already scanned within the same industry. It provides a benchmark to compare an individual company's security posture against its industry peers. | N/A | Between 800 and 900 |
Bank of America Company Cyber Security News & History
| Entity | Type | Severity | Impact | Seen | Url ID | Details | View |
|---|---|---|---|---|---|---|---|
| Bank of America | Data Leak | 85 | 3 | 04/2020 | BAN2212291222 | Link | |
Rankiteo Explanation : Attack with significant impact with internal employee data leaksDescription: Business clients applying for Paycheck Protection Program (PPP) loans with Bank of America have had their personal and business information exposed in a data breach. The data breach occurred on April 22 as Bank of America uploaded customersโ PPP loan applications to the Small Business Administrationโs (SBA) online testing system, which allowed lenders to test application submissions. During the testing process, Application information was potentially visible to other lenders and their third-party vendors. The exposed data included both business and clientsโ personal information. The affected business data may include business names, addresses, and tax identification numbers. Affected personal data may include names, addresses, Social Security numbers, phone numbers, email addresses, and citizenship information. | |||||||
Bank of America Company Subsidiaries
Bank of America is one of the world's largest financial institutions, serving individuals, small- and middle-market businesses and large corporations with a full range of banking, investing, asset management and other financial and risk management products and services. The company serves approximately 56 million U.S. consumer and small business relationships. It is among the world's leading wealth management companies and is a global leader in corporate and investment banking and trading. This LinkedIn company page is moderated. For more information, please visit: https://bit.ly/32FDdQr. For account issues, please visit: https://bit.ly/2GeTIeP.
Access Data Using Our API
Get company history
Rapid.png)
BA Cyber Security News
In Other News: Bank of America Warns of Data Breach, Trucking Cybersecurity, Treasury Hack Linked to Silk Typhoon
2025 trucking cybersecurity report, Bank of America discloses data breach, Silk Typhoon behind US Treasury hack.
Bank Of America At The Intersection Of Cybersecurity And Neurodiversity
Neurodiversity is any variation in the human brain regarding sociability, learning, attention, mood, and other mental functions. This includesย ...
CrowdStrike or Check Point: Bank of America Selects the Superior Cybersecurity Stock to Buy
Bank of America has taken note, and is looking at CrowdStrike (NASDAQ:CRWD) and Check Point (NASDAQ:CHKP), two major names in the cybersecurityย ...
Bank of America Customers Left In The Dark About Data Breach For 90 Days
About 57,000 Bank of America customers are being warned that their personal information may have been exposed during a November cyberattackย ...
How to Manage Third-Party Cybersecurity Risks for Business
As businesses increasingly rely on external organizations to operate, it's crucial to build or strengthen your third-party risk management plan.
The internetโs worst โzero dayโ could drain all of our bank accounts
Without protective legislation, strong rules, cybercops, better security and tech-literate users, it seems inevitable that we wake one dayย ...
Banks gear up to boost cybersecurity, cloud and data spending
Financial services companies are doubling down on cloud, cyber and data platforms to lay the groundwork for generative AI and implement otherย ...
Banks Want SEC to Rescind Cyberattack Disclosure Requirements
The letter said that the โcomplex and narrow disclosure delay mechanismโ interferes with incident response and law enforcement, while alsoย ...
William Blair Bolsters Cybersecurity Investment Banking With Senior Hire
William Blair's investment banking group enables corporations, financial sponsors, and owner/entrepreneurs around the world to achieve theirย ...
BA Similar Companies
PrivatBank
PrivatBank is the largest state-owned bank of Ukraine. The Bank serves over 18 million active customers, while over 70% of Ukrainians use its services. The Bank is the leader in retail, introduces new and upgrades existing services for small and medium businesses, has created a strong digital ecosys
NatWest Business
At NatWest weโรรดre committed to helping British businesses grow. We give you access to the latest insights & analysis from industry experts and our partners. If you need to ask a question about your account with us, the quickest way to get in touch is via webchat. Visit our Business homepage: htt
Federal Bank
Federal Bank, one of the leading private sector banks with presence across the country, began its journey from humble backgrounds to reach the stature of an institution with national prominence & character. With a rich legacy of 7 decades, the Bank aspires to be the most admired Bank in the country
VietinBank
GENERAL INFORMATION Registered name in Vietnamese: NGโรN HโรNG THโรโโ NG Mยทโซโ I Cยทยชรฎ PHยทโซยถN CโรฎNG THโรโโ NG VIยทยชรT NAM Registered name in English: VIETNAM JOINT STOCK COMMERCIAL BANK FOR INDUSTRY AND TRADE Trading name: VietinBank Banking License: No. 142/GP-NHNN dated 3rd July 2009 by the State Bank o
Banco de la Provincia de Buenos Aires
Desde 1822 somos el banco impulsor del desarrollo de la Provincia de Buenos Aires y su gente, invirtiendo en talento y creando valor para nuestros casi 5 millones de clientes. Con mโยฐs de 400 localizaciones distribuidas entre la Ciudad Autโโฅnoma y la Provincia de Buenos Aires y la Banca Internet Pr
Colonial Bank
BB&T formerly Colonial is a financial services company headquartered in Winston-Salem, NC. About BB&T Printable Version Building on a tradition of excellence in community banking that stretches back to 1872, BB&T continues to offer clients a complete range of financial services including b
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
BA CyberSecurity History Information
How many cyber incidents has BA faced?
Total Incidents: According to Rankiteo, BA has faced 1 incident in the past.
What types of cybersecurity incidents have occurred at BA?
Incident Types: The types of cybersecurity incidents that have occurred incident Data Leak.
Incident Details
Can you provide details on each incident?
Incident : Data Breach
Title: Bank of America PPP Loan Data Breach
Description: Business clients applying for Paycheck Protection Program (PPP) loans with Bank of America have had their personal and business information exposed in a data breach.
Date Detected: April 22, 2020
Type: Data Breach
Attack Vector: Improper Data Handling
Vulnerability Exploited: Improper Data Handling
What are the most common types of attacks the company has faced?
Common Attack Types: The most common types of attacks the company has faced is Data Leak.
Impact of the Incidents
What was the impact of each incident?
Incident : Data Breach BAN2212291222
Data Compromised: Business names, Addresses, Tax identification numbers, Names, Social Security numbers, Phone numbers, Email addresses, Citizenship information
What types of data are most commonly compromised in incidents?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Business names, Addresses, Tax identification numbers, Names, Social Security numbers, Phone numbers, Email addresses and Citizenship information.
Which entities were affected by each incident?
Data Breach Information
What type of data was compromised in each breach?
Incident : Data Breach BAN2212291222
Type of Data Compromised: Business names, Addresses, Tax identification numbers, Names, Social Security numbers, Phone numbers, Email addresses, Citizenship information
Sensitivity of Data: High
Personally Identifiable Information: True
Additional Questions
Incident Details
What was the most recent incident detected?
Most Recent Incident Detected: The most recent incident detected was on April 22, 2020.
Impact of the Incidents
What was the most significant data compromised in an incident?
Most Significant Data Compromised: The most significant data compromised in an incident were Business names, Addresses, Tax identification numbers, Names, Social Security numbers, Phone numbers, Email addresses and Citizenship information.
Data Breach Information
What was the most sensitive data compromised in a breach?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were Business names, Addresses, Tax identification numbers, Names, Social Security numbers, Phone numbers, Email addresses and Citizenship information.
What Do We Measure?
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
