Cyber Risk and the U.S. Financial System: A Pre-Mortem Analysis

Eisenbach, Thomas M.; Kovner, Anna; Lee, Michael

doi:10.2139/ssrn.3522710

Cyber Risk and the U.S. Financial System: A Pre-Mortem Analysis

FRB of New York Staff Report No. 909, January 2020

37 Pages Posted: 23 Jan 2020

See all articles by Thomas M. Eisenbach

Thomas M. Eisenbach

Federal Reserve Banks - Federal Reserve Bank of New York

Michael Lee

Federal Reserve Banks - Federal Reserve Bank of New York

Date Written: January 2020

Abstract

We model how a cyber attack may be amplified through the U.S. financial system, focusing on the wholesale payments network. We estimate that the impairment of any of the five most active U.S. banks will result in significant spillovers to other banks, with 38 percent of the network affected on average. The impact varies and can be larger on particular days and in geographies with concentrated banking markets. When banks respond to uncertainty by liquidity hoarding, the potential impact in forgone payment activity is dramatic, reaching more than 2.5 times daily GDP. In a reverse stress test, interruptions originating from banks with less than $10 billion in assets are sufficient to impair a significant amount of the system. Additional risk emerges from third-party providers, which connect otherwise unrelated banks.

Keywords: cyber, banks, networks, payments

JEL Classification: G12, G21, G28

Suggested Citation: Suggested Citation

Eisenbach, Thomas M. and Kovner, Anna and Lee, Michael, Cyber Risk and the U.S. Financial System: A Pre-Mortem Analysis (January 2020). FRB of New York Staff Report No. 909, January 2020. Available at SSRN: https://ssrn.com/abstract=3522710 or http://dx.doi.org/10.2139/ssrn.3522710