The risk that defined three years is over
On May 28, 2026, the Bank of Canada released its 2026 Financial Stability Report. The report is the BoC's annual read on systemic risk, and this year's edition contains a sentence every Canadian lender should print out and put on the wall: "we expect this risk to have fully passed by the second half of 2027."
The risk in question is the pandemic-era shock to mortgage renewal payments. Since 2023, it has been the single most-discussed credit threat in Canadian banking; the renewals of ultra-low-rate mortgages originated in 2020 and 2021 were expected to trigger a wave of payment shocks, delinquencies, and forced sales. The reality has been milder. In the BoC's words, "most borrowers have managed this risk well." Delinquency has stabilized. Banks have added provisions. The final wave of those renewals lands in the next 12 months, and then it is done.
-1.png?width=2160&height=2700&name=fsr-graphic-final%20(1)-1.png)
The risk replacing it is operational, not credit
In the same opening statement, the BoC named the new top-of-stack risk: artificial intelligence. The exact language: AI "may also increase the speed, scale and sophistication of cyber attacks." That is a different category of risk entirely. It does not show up in arrears curves or stress tests; it shows up in fraud loss ratios, operational outages, regulatory enforcement, and the customer-trust gap that opens after a public incident.
This matters more to mid-market banks, credit unions, and non-bank lenders than to the Big Six. The largest Canadian banks have full-stack security teams, mature SOC operations, and the budgets to absorb the AI cyber arms race. The institutions in the second tier do not. They have spent the last 18 months adopting AI to compete on underwriting speed, often with point solutions stitched into legacy infrastructure. The FSR is, in effect, the regulator telling them the bill is coming due.
What the FSR actually says about cyber
The BoC does not provide a cyber playbook in the report; that is not its role. What it does is name three vectors that any lender should now use to audit their own stack. Speed: attackers using AI can iterate phishing, credential stuffing, and lateral movement faster than human responders. Scale: automated targeting can hit thousands of customer accounts and document-processing pipelines in parallel. Sophistication: deepfake-grade identity fraud and synthetic documents can defeat traditional KYC and verification controls.
Each vector implies a defensive capability that the lender must have. For speed, that is, detection and containment in minutes, not hours. For scale: portfolio-wide controls that prevent a single compromised credential from cascading. For sophistication: layered identity verification, document forensics, and, ideally, a human checkpoint for high-risk decisions.
The full risk picture isn't only cyber
The FSR's other concerns are worth flagging because they interact with AI cyber. Stock and corporate debt valuations are "high relative to historical norms," making markets vulnerable to a sharp correction. Hedge funds are increasing leverage to fund sovereign debt purchases; under stress, that activity can amplify funding-market disruptions. The economic and geopolitical environment, including the war in the Middle East and uncertainty around the Canada-US trade relationship, has become more volatile.
The BoC's explicit concern is that these vulnerabilities can "crystalize at once" and reinforce each other. A cyber event during a market correction. A deepfake-driven fraud wave during a credit downturn. The cascade scenarios are why the FSR exists.
Where this leaves Canadian lenders
The honest read is that mid-market banks, credit unions, and non-bank lenders have a narrow window to retool. Three actions are practical inside Q3:
-
Rebaseline the risk register. If pandemic renewals are still in the top three, the FSR has moved past you. AI cyber risk should sit at or near the top, with a named owner.
-
Audit AI-enabled lending workflows against the three vectors. Speed, scale, sophistication. For each, document the defensive control and the gap.
-
Treat the audit trail as a product feature. A complete, queryable decision log on every AI-assisted underwriting and verification step is the new compliance floor. Build it, or buy a platform that has it.
The institutions that come out of this period strongest will be the ones that treat the FSR not as a press release but as an operating brief. The risk has changed; the response should too. This is what FundMore was built for: AI underwriting and verification with an audit layer, a human-in-the-loop architecture, and FCT/OPTA data integration built in from day one, not bolted on after the regulator names the gap.
Frequently Asked Questions
1. Did the Bank of Canada really say the mortgage renewal risk is over?
Effectively yes. The 2026 FSR opening statement says "most borrowers have managed this risk well" and that the final wave of pandemic-era renewals will land in the next 12 months, with the risk "fully passed by the second half of 2027." It does not mean every borrower is fine; the BoC notes that highly indebted households remain vulnerable to job loss or unexpected expenses. But as a systemic risk to the financial system, it has been reclassified as resolved.
2. Why is AI cyber risk being called out now and not in earlier reports?
Because the threat profile has changed materially in the last 12 months. Generative AI tools have made phishing, deepfake identity attacks, and synthetic document fraud cheaper and faster to deploy. The BoC has been monitoring cyber risk for years, but the 2026 FSR is the first to name AI as the specific accelerant. The language is also notable; the BoC rarely calls out emerging technology by name in the FSR unless it has concluded the risk is now material.
3. Does this apply to non-bank lenders and credit unions, or just federally regulated banks?
It applies to everyone in the lending value chain. The FSR is a systemic stability document, but the operational implications travel downstream. Credit unions are facing the same AI fraud vectors with smaller security teams. Non-bank lenders, especially those competing on speed and digital experience, are arguably more exposed; they have less regulatory cushion and less brand equity to absorb an incident. OSFI Superintendent Peter Routledge spent part of this same week at the CCUA Regulatory Forum discussing exactly this readiness gap with credit union leaders.
4. What does "speed, scale and sophistication" actually look like in practice?
Speed: an attacker using AI can generate and test thousands of phishing variants in the time it takes a security team to triage a single ticket. Scale: a single compromised broker login can be used to submit fraudulent applications across dozens of lenders in parallel via automation. Sophistication: a deepfaked video call, a synthetic ID document, or a fabricated income statement that passes traditional OCR and pattern checks. Each of these is already happening; the FSR acknowledges that the volume and quality are rising fast enough to constitute a systemic concern.
5. Is there a role for AI in defending against AI-driven attacks?
Yes, and the FSR implicitly accepts this when it notes that AI is also expected to boost productivity. Defensive AI plays in document forensics, behavioural biometrics, anomaly detection, and decision audit are now table stakes. The architectural question is whether the AI in your lending stack was designed to be auditable and contestable, with a human checkpoint on consequential decisions, or whether it operates as a black box. Black-box AI in underwriting is the configuration the FSR is implicitly warning against.
6. What should a CIO or Head of Risk do in the next 60 days?
Three steps. First, share the FSR with the executive team and explicitly retire pandemic renewal risk from the top of the operational watchlist; signal the swap internally. Second, commission an AI cyber-readiness review across the three FSR vectors and document the defensive controls for each. Third, sequence the remediation against your IIPA or equivalent prioritization process; the FSR is the regulator-grade evidence you need to fund the work. Most institutions will find the gaps cluster around audit-trail completeness and identity verification under deepfake conditions; both are addressable inside Q3 with the right platform decisions.