This article summarizes ESET's APT Activity Report, highlighting that state-sponsored groups from China, North Korea, Russia, and Iran conducted targeted campaigns between October 2025 and March 2026, focusing on strategic industries like oil shipments, drone manufacturing, and software supply chains via a poisoned code library. The primary threat is espionage-driven compromise using tailored attack vectors aligned with geopolitical objectives. No specific vulnerability details, CVSS scores, or patch information are provided in the source text.
Geopolitical pressure drove much of the state-sponsored cyber activity recorded between October 2025 and March 2026, according to ESET’s latest APT Activity Report. Espionage groups aligned with China, North Korea, Russia, and Iran adjusted their targets to match the economic and security concerns of their governments. Attack sources (Source: ESET) “In Asia, the campaigns primarily focused on governmental organizations, strategic industries, and advanced technology sectors. In the Middle East, Israel remained the principal focus of … More → The post Oil shipments, drone makers, and a poisoned code library targeted in recent APT campaigns appeared first on Help Net Security .