Account takeover / credential theft
Stolen or phished credentials let an attacker into client accounts or advisory platforms to move funds or steal data.
MFA everywhere, conditional access, dark web credential monitoring, and anomaly detection on logins.