Safeguarding Portfolio Value in Private Equity

Cyber

February 11, 2026

Cyber Risk at Scale: Safeguarding Portfolio Value in Private Equity

This report assesses trends in cybersecurity risk management across private equity funds. Offering insights into peer approaches, resource commitment and governance.

Download the Report

PE firms are exposed as cybersecurity has evolved into a material transaction risk. Cyber risk is no longer merely an operational concern; it has also become a direct threat to deal flow and valuation.

Kroll surveyed more than 300 global PE executives to understand cybersecurity risk and fund-level management practices. It found that incidents are becoming more frequent and there is an average financial impact of $2.1 million (mn), often scaling up to $10 mn. Larger firms tend to have stronger defenses, governing through strict mandates and centralized platforms, causing smaller firms to suffer disproportionately more from costly remediation and disrupted deals.

PE firms should take measures to govern cyber risk more effectively and encourage the adoption of enterprise-grade security protections across their portfolio to avoid disruption, limit financial losses, and protect exit value.

 

 

Key Findings

  • Cybersecurity incidents are rising, increasing the need for strong portfolio‑level risk management.
  • Incident impact is typically $2.1 mn, and larger financial impacts are not uncommon. 
  • Larger firms have established effective practices to enable portfolio company leaders to protect their business. 
  • Smaller firms have less robust risk management practices and are more likely to experience additional remediation costs and deal disruption during exit transactions. 

Financial Impact of Cybersecurity Risk

The financial impact is undeniable. Almost all (94%) of PE firms have absorbed losses from cyber-related disruption, with the average approximate financial impact to deals reaching $2.1 mn, and 13% reporting losses more than $5 mn.

Financial Impact of Cybersecurity Risk

Q. Has cybersecurity risk had any financial impact on your portfolio companies?

 

Financial Impact on Deal Disruption

The average approximate financial impact to deals that were disrupted due to cybersecurity risk was $2.1 mn, and larger impacts were not uncommon.

Financial Impact on Deal Disruption

Q. What is the approximate financial impact to deals that were disrupted due to cybersecurity risk (USD)?

Larger Firms are Leading the way to Build Cyber Resilience

 

State of Portfolio Cybersecurity in Private Equity

Read More in the Report

The full report also includes:

  • Market conditions for PE firms and why this matters to their management of cybersecurity risk
  • Insight on why cybersecurity risk is particularly disruptive during the “hold period” 
  • Detail on the financial implications, including the types of costs
  • The disproportionate financial impact on smaller and mid-market PE firms
  • Predictions from PE firms on cybersecurity risk management in the year ahead 
  • Advice on how firms can safeguard their portfolio value from cyber risk

Download the Report

We will use this information to respond to your inquiry and process your data in accordance with our privacy policy.

Latest Research from Kroll

Stay Ahead with Kroll

Cyber and Data Resilience

Kroll merges elite security and data risk expertise with frontline intelligence from thousands of incident responses and regulatory compliance, financial crime and due diligence engagements to make our clients more cyber- resilient.

Learn More

Enterprise Risk Retainer

A faster, more flexible approach to managing unpredictable risks.

Learn More

Incident Response & Recovery

Kroll’s elite security leaders deliver rapid responses for over 3,000 incidents per year and have the resources and expertise to support the entire incident lifecycle, including litigation demands. Gain peace of mind in a crisis.

Learn More

Fund Services

Kroll delivers a unique set of services to support private equity, private credit, hedge funds, collateralized loan obligations, real estate funds, BDCs, interval funds and 1940 Act funds at every stage—from registration to ongoing regulatory compliance, cybersecurity and valuation, to fund winddown. Kroll provides comprehensive support to funds to drive operational resilience and compliance with regulatory obligations.

Learn More