Overview
The Financial Stability Oversight Council released its 2025 annual report, and one data point cut through fast.
Beyond that, the tone stays measured. FSOC says U.S. markets and institutions performed well overall, even during a short volatility spike in early April. Core markets and infrastructure held up.
Asset prices bounced back too, and in some segments still look elevated compared with fundamentals. That part lingers.
The report argues that stability policy keeps drifting away from classic credit-cycle worries and toward market plumbing and operational resilience. In the chair’s letter, financial stability ties directly to long-term growth and what the Council calls economic security.
Regulators, FSOC says, should weigh how rules stack and interact, not just the cost of each rule on its own.
Key highlights
- FSOC finds about 20% of U.S. student loans delinquent, the sharpest consumer credit stress signal in the report.
- Overall financial stability looks steady, with markets holding up through the April volatility spike, though some asset prices remain stretched.
- Policy focus shifts away from classic credit cycles toward market mechanics, operational resilience, and third-party risk.
- Cyber risk stays on the systemic radar, driven by interconnectivity, stronger attackers, and reliance on a narrow set of service providers.
- Regulators plan closer scrutiny of short-term funding markets, AI use in finance, commercial real estate refinancing, and payment stablecoins.
Title I of the Dodd-Frank Act created the Financial Stability Oversight Council (Council) and gave it the purposes of identifying risks to the financial stability of the United States, promoting market discipline, and responding to emerging threats to the stability of the U.S. financial system. Notably, the Act did not define the term “financial stability.”
Historically, financial stability analysis has centered on identifying vulnerabilities in financial institutions or markets that could, in certain adverse conditions, result in disruption in the provision of credit or liquidity or in other critical financial services such as payments, thereby leading to material stress and significant losses in the broader financial system, Beinsure noted.
But monitoring and addressing these vulnerabilities, although important, is not sufficient for safeguarding financial stability. Financial stability also requires and is interdependent with sustainable long-term economic growth and economic security.
Cyber risk comes first on the watchlist
FSOC says it remains a credible systemic channel, even though no single incident has yet triggered broad financial instability.
Interconnected systems, more capable attackers, and limited substitutes for certain third-party services raise the odds that a successful breach could spill into outages, liquidity stress, and shaken confidence. It’s not hypothetical.
On policy, the Council backs coordinated exams of third-party service providers across federal banking regulators, Beinsure noted.
It also calls for legislation to give the Federal Housing Finance Agency stronger examination and enforcement authority over third-party risks at the entities it oversees.
The cyber threat landscape is evolving rapidly
The cyber threat landscape is evolving rapidly, with nation-state actors and sophisticated criminal groups continuing to target financial institutions.
Financial institutions are lucrative targets because they manage substantial funds, hold sensitive customer data, and can be impacted by operational disruptions.
Although cyber incidents have not resulted in a significant systemic event for the U.S. financial services sector to date, they could pose risks to financial stability given the high complexity and interconnectedness of global financial institutions and their systems.
A cyber incident at a key financial institution, critical infrastructure or significant operation, or in an important market could propagate stress across the financial system.
For example, incidents involving services provided by a significant third-party service provider could affect multiple financial institutions and their customers, particularly where there is limited substitutability for the affected services.
The potential consequences of cyber incidents include large-scale service disruptions, challenges with accessing liquidity, compromised data, and a loss of confidence in institutions, markets, and the global financial system.
Bank regulation gets a reset message
FSOC pushes for simplification and clearer supervision, endorsing a broad review aimed at modernising capital rules and supervision while cutting unnecessary burden.
The report says the framework has grown too complex. Side effects include lending shifting from banks to nonbanks and leverage ratios that discourage low-risk market intermediation. That’s a quiet admission.
Supervisory reforms show up too. FSOC points to proposals that would standardise what counts as an unsafe or unsound practice and clarify how agencies communicate findings.
The Council also supports removing reputational risk from supervisory programs and rescinding earlier climate-related financial risk management principles. Some of this reads like cleanup.
Artificial intelligence threads
FSOC says AI use is accelerating across financial services, and regulators are testing it for supervision and early-warning signals. The response sits with coordination, Beinsure stated.
An AI working group will identify high-value use cases inside agencies and support dialogue with the private sector around responsible adoption. It’s cautious, not hands-off.
FSOC also flags market developments it wants monitored closely.
AI technologies can help counter increasingly sophisticated attacks
AI is emerging as a useful defense instrument against cyber attacks by reducing incident response times and costs, providing more accurate and efficient threat management, enabling faster decision-making, and enhancing system resilience.
AI can enable real-time anomaly detection, rapid threat identification, and automated risk containment. In the financial services sector, AI can enhance resilience by monitoring transactions and network activity for suspicious behavior and provides government agencies with capabilities to detect risks at scale.
Treasury’s Office of Cybersecurity and Critical Infrastructure Protection (OCCIP), in collaboration with FBICC and the FSSCC, is partnering with the financial services sector to better understand AI’s role in shaping the sector’s cyber resilience and addressing challenges to adoption in the newly established AI Executive Oversight Group.
Potential financial stability value and risks of AI
AI usage has the potential to support economic growth by generating new insights, boosting operational efficiency, and improving risk management for the public and private sectors alike.
Use of AI may also lower barriers to entry for entrepreneurs and support faster scaling for startups. Established firms are taking a deliberate approach to AI adoption, with CEOs expecting significant impacts to show in the three- to ten-year horizon.
AI usage has the potential to increase productivity, which is the foundation for economic growth.
Estimates of gains in worker-level productivity with GenAI and LLMs are significant and range from 12% to 56% with potential gains in quality by 40%.
Generative AI could qualify as a new general-purpose technology, permeating widely across sectors, continuously improving, and spawning positive loops of innovations.
GenAI is also being used by foreign regulators for more advanced supervisory functions, such as risk horizon scanning, stress testing, and simulating aspects of bank failures.
Short-term funding and cash products remain large
Repo markets carry a gross size near $12 tn. Commercial paper outstanding runs around $1.3 tn. FSOC warns these markets can amplify stress through run and rollover dynamics.
Other short-term investment vehicles hold more than 40% of the commercial paper market and face similar run-like pressure.
Tokenisation pushes into cash management
Money-market fund ETFs now hold over $4 bn in assets. Tokenised money-market funds reached about $1.7 bn in net assets by October. Small numbers, fast growth.
Commercial real estate refinancing risk stays front of mind. CRE mortgage debt totalled $6.2 tn in Q2. FSOC highlights a maturity wall near $936 bn in 2026 and $983 bn in 2027. Timing matters.
Financial institutions are seeking new revenue streams, faster operations, and cost reductions. Tokenization, a blockchain-based technology, offers immediate value in these areas. It allows digital representation of asset ownership – whether stocks, bonds, cash, cryptocurrency, data sets, or loyalty points – on a blockchain.
Once an asset is tokenized, it can be transferred or traded quickly and cost-effectively, and used as collateral. Tokenization on finance addresses common issues such as the costs and delays associated with delivery versus payment (DVP) settlement, according to PwC Report.
By leveraging tokenization and blockchain advancements, institutions can enhance operational agility, flexibility, and speed.
Current implementations provide valuable lessons for future transformations. Investments in tokenization infrastructure and capabilities can lead to improved capital efficiency, cost savings, access to new market segments, transparency, and risk management (see Why Do Insurers & Financial Institutions Need Tokenization?).
Tokenization benefits both liquid assets and historically illiquid assets (private credit, private equity).
In the $1.5 tn private credit market, matching buyers and sellers is time-consuming.
Tokenization enables “fractionalization” of loans, increasing the pool of potential borrowers. Buyers or borrowers can use tokenized assets similarly to bonds.
Corporate credit stress shows up at the margin
The Council points to pressure on lower-rated borrowers and elevated leveraged-loan defaults, often through distressed exchanges. According to Beinsure analysts, that pattern bears watching if rates stay higher for longer.
Stablecoins and payments regulation close the list. FSOC supports full implementation of the GENIUS Act and says growth in payment stablecoins adds incremental demand for Treasuries.
The report highlights the Act’s framework for certain issuers, including highly liquid reserve requirements and monthly disclosure of reserve composition.
For banking, payments, and FinTech startups, the document reads less like a warning siren and more like a map. Policy focus, FSOC signals, will settle on Treasury market infrastructure, including central clearing, operational resilience, tighter third-party oversight, and governance around AI.
At the same time, the Council keeps an eye on cash-management products and refinancing pressure in corporate credit and commercial real estate, waiting to see if volatility tests the system again.
FAQ
Because roughly 20% of student loans are delinquent, which stands out as a material household credit stress even as other markets appear stable.
No. The Council says markets and institutions performed well overall, including during a brief surge in volatility, though it flags pockets of risk.
Cyber risk, short-term funding markets, commercial real estate refinancing, and pressure on lower-rated corporate borrowers sit high on the list.
FSOC argues that interconnection and reliance on a few critical third-party providers mean a single successful attack could spread quickly and disrupt liquidity or confidence.
FSOC calls for simpler, clearer supervision and a broad review of capital rules, saying complexity has pushed some lending outside banks and distorted low-risk activity.
The Council sees AI adoption accelerating and supports coordinated regulatory use of AI, mainly for supervision and early-warning signals, through an interagency working group.
Because payment stablecoins are starting to influence Treasury demand, and tokenised cash products, while still small, could transmit stress if they scale quickly.
…………………….
Written by Yana Keller — Editor at Beinsure Media
