F‑Secure warns that 2026 will see industrial-scale scam centers (linked to Cambodia, Laos and Myanmar) and agentic AI create new, large-scale cyber risks, noting a Scam Center Strike Force has seized more than $400 million in cryptocurrency and that nearly $10 billion is stolen from Americans annually. The firm predicts AI shopping assistants and agentic systems will be targeted for fraud, synthetic identity theft enabled by AI is scaling (over an estimated 6.4 million identity/fraud reports to the FTC in the past year), and consumers increasingly expect embedded security—71% would consider provider-based security and protected providers see 57% higher engagement. The net effect is heightened enforcement and regulatory focus, greater demand for embedded security from service providers, and elevated operational risk for financial and retail firms that fail to harden AI and identity controls.
Market structure: Winners will be enterprise/cloud security (CrowdStrike CRWD, Palo Alto PANW, Fortinet FTNT), identity/verification (Okta OKTA, EFX) and large platform owners (MSFT, GOOGL, AMZN) that can embed security into apps; losers are small consumer fintechs and standalone payment processors (PYPL, SQ) that face margin pressure from rising fraud and chargebacks. Expect pricing power to shift to vendors that provide automated, agentic-AI protections — willingness-to-pay signals (71% consumer preference) imply potential 10–20% incremental ARPU for providers within 12–24 months. Risk assessment: Tail risks include a regulatory shock (federal mandate for embedded ISP security or strict AI-agent limits) that imposes 1–3% revenue hits on telcos/retailers but accelerates vendor wins; a systemic AI-driven fraud wave could inflict >$20–50B losses across banks/fintechs over 12 months. Hidden dependency: centralized AI/identity APIs (OpenAI, AWS IAM) are single points of failure — outages or API-level exploits would spike implied vol and credit spreads within days/weeks. Catalysts: DOJ seizures >$1B, CFPB/FTC rule proposals, or a high-profile agentic-AI fraud case will accelerate reallocation of spend. Trade implications: Near-term (days–weeks) overweight enterprise security: establish 2–3% longs in CRWD and 1–2% in PANW; buy 3–6 month call spreads (ATM buy / +25% OTM sell) to capture rising demand and vol. Short 1–2% positions in high-exposure consumer fintechs (PYPL, SQ) as chargebacks/fraud costs compress margins over 3–12 months; pair long OKTA (1.5%) vs short PYPL (2%) to capture identity-security premium. Rotate weight from retail/e-commerce discretionary into security and identity names over 1–4 quarters. Contrarian angle: The market underestimates telecoms/cable operators (CMCSA, VZ) as monetizable security platforms — if they execute embedded security, they can add sticky ARPU and offset churn; conversely, large cloud/platform incumbents (MSFT, AMZN) are likely to internalize AI-shopping assistants, compressing TAM for third-party assistants. Historical parallel: 2008 fraud spikes accelerated consolidation and premiuming of incumbents; expect similar winner-take-most dynamics here over 12–36 months.
AI-powered research, real-time alerts, and portfolio analytics for institutional investors.
Request a DemoOverall Sentiment
moderately negative
Sentiment Score
-0.35
