CrowdStrike’s 2026 Financial Services Threat Landscape Report documents a three-front convergence of DPRK crypto theft ($2.02B via IT worker infiltration and supply chain compromise), China-nexus MURKY PANDA M365 espionage, and Big Game Hunting ransomware (27% more financial victims YoY) against shared identity and cloud infrastructure. No CVEs apply; all three clusters exploit control gaps — IT worker impersonation, valid account abuse, and phishing-resistant MFA absence — rather than unpatched software. Mitigation is control-based and identity-focused.