By Ray Palacios, MAcc CISSP®, CFE, Director of Compliance
Key Takeaways:
- Cybersecurity is now part of personal financial health.
Just as you focus on physical and mental well-being, protecting your digital life is essential to safeguarding your assets in 2026 - Scams are more convincing and more personal than ever.
AI-driven impersonation, phishing texts, and fake government or financial messages increasingly rely on urgency and trust to prompt quick action. - Urgency is the biggest red flag.
Unexpected requests for money, sensitive information, or immediate action, especially via email, text, or calls, should always be treated with caution. - Strong everyday habits significantly reduce risk.
Unique passwords, multi-factor authentication, device updates, and avoiding public Wi-Fi for financial activity remain the most effective defenses. - Security works best as a partnership.
Using secure client portals, verifying requests, and contacting MONTAG directly when something feels off helps protect accounts and prevent fraud before it escalates.
As 2026 continues to unfold, many people are focused on staying healthy, organized, and financially secure. One area that often receives less attention is digital and cyber health. Unfortunately, cybercriminals remain highly active, using increasingly sophisticated methods to exploit trust and urgency. We’d like to draw your attention to some of the most common cybercrimes of 2026 and things you can do now to strengthen your defenses against these faceless criminals.
Common Cybercriminal Tactics of 2026
Cybercriminals continue to refine their tactics, and 2026 will likely see an increase in scams designed to exploit trust and create urgency using the latest technologies.
One of the fastest-growing threats is AI-driven impersonation scams, where attackers use deep-fake audio or video to pose as family members, financial professionals, or government officials. These scams often involve urgent requests for money or sensitive information, making them highly persuasive.
Clients should be wary of any unexpected contact, especially if it pressures them to act quickly. Another widespread scam is phishing and “smishing,” where fraudulent emails or text messages mimic trusted institutions. These messages commonly include alerts about locked accounts, suspicious transactions, or missed deliveries, tricking people into clicking malicious links.
Fraudsters also continue to exploit economic uncertainty with announced government benefits and financial relief scams, offering fake refunds or assistance programs in exchange for personal information or upfront payments.
Red flags to watch for include:
- Unexpected requests for wire transfers, gift cards, or sensitive information
- Messages creating urgency or fear (“immediate action required”)
- Poor grammar, odd formatting, or unfamiliar links
- Videos, calls, or voice messages that seem “not quite right”
Protecting Your Information
With scams becoming more sophisticated, strong everyday cyber hygiene in 2026 is essential. The foundation of secure online behavior starts with password protection. Using long, unique passwords for every account and avoiding password reuse dramatically reduces the risk of unauthorized access.
For example, ABat#2021WSC! could be remembered with the phrase ”Atlanta Braves are the #2021 World Series Champions!” Using a password manager is another alternative to keep credentials secure and help generate strong alternatives. Alongside strong passwords, multi-factor authentication (MFA) adds another crucial layer of defense, making it far more difficult for attackers to compromise accounts even if passwords are stolen. MFA could include something you have (your cell phone/email) or even better, something you are (Face ID or fingerprints). Anytime you can add security beyond the something you know (passwords/PINs), it is highly recommended.
Clients should be especially cautious with digital communications. Email and text messages remain the primary entry point for cyberattacks, so it’s important to verify all instructions involving account access or money movement. When in doubt, contact the email sender directly using a known phone number and not the number provided in the message.
Secure connections also play a major role in safeguarding information. Public Wi-Fi networks are prime targets for attackers, and clients should avoid accessing financial accounts on them. Keeping devices updated and using reputable antivirus tools help block evolving threats.
Key protective actions to take include:
- Enabling MFA on all financial and email accounts
- Verifying unexpected requests by calling the sender
- Avoiding email-based document sharing in favor of secure portals
- Updating devices and software regularly
Protecting Your Accounts at MONTAG
At our firm, security is a collaborative effort, and we have processes designed to safeguard your accounts even when attackers attempt to impersonate you. The secure client portal is the safest method for exchanging documents, as it provides encryption and controlled access that email cannot match. We strongly discourage sending sensitive materials, such as IDs, account numbers, or tax documents, through email or text. Clients can also expect us to perform identity verification for any requests involving changes, transfers, or confidential information.
To protect you, there are specific actions we will never take. We will never request your passwords, pressure you to act urgently, or ask you to initiate a transaction via text message. If anything appears unusual, contacting our team directly is the safest approach.
Our protection measures include:
- Mandatory callbacks for money movement instructions
- Use of encrypted client portal for all sensitive exchanges
- Strict identity verification protocols
What To Do If You Suspect a Scam
If you ever feel uncertain about a message, phone call, or request, pause immediately and avoid clicking links or sending information. Gather any relevant details, such as screenshots or phone numbers, and reach out to us right away so we can assist you. Reporting scams promptly helps prevent further harm and allows our team to guide you through next steps, including securing accounts or notifying appropriate authorities.
We Are Here For You
Cybersecurity is no longer optional; it’s an ongoing part of managing personal and financial well-being. With scams increasing in scale and sophistication, staying informed and adopting a vigilant mindset is one of the best defenses you can have. At MONTAG Wealth Management, our team is always here to help, answer questions, and support you in maintaining a secure digital environment to protect your hard-earned assets.
Disclosure:
The information provided is for illustration purposes only. It is not, and should not, be regarded as “investment advice” or as a “recommendation” regarding a course of action to be taken. These analyses have been produced using data provided by third parties and/or public sources. While the information is believed to be reliable, its accuracy cannot be guaranteed. MONTAG employees do not provide legal or tax advice. For specific legal or tax matters, you should consult with your own legal and/or tax advisors. There are risks associated with investing in securities. Investing in stocks, bonds, exchange traded funds, mutual funds, and money market funds involve risk of loss. Loss of principal is possible.
