Cybersecurity and Financial Stability
53 Pages Posted: 4 Apr 2022
Date Written: 2022
Abstract
Cyber attacks can impair banks operations and precipitate bank runs. When digital infrastructure is shared, banks defend themselves by investing in cybersecurity but can free-ride on the security measures of others. Ex ante free-riding by banks interacts with the ex post coordination frictions underpinning bank runs. While the temptation to free-ride induces underinvestment in cybersecurity, the prospect of a run encourages greater investment. System-wide cybersecurity is suboptimal and sensitive to rollover risk and bank heterogeneity. Regulatory measures, including negligence rules, liquidity regulation and cyber hygiene notices, facilitate constrained efficient cybersecurity investment. We suggest testable hypotheses to inform empirical work in this area.
Keywords: cyber attacks, bank runs, global games, weaker-link public goods
JEL Classification: G01, G21, G28, H41
Suggested Citation: Suggested Citation