X-Industry

Research from the leading EU cybersecurity company, ESET, examines the latest APT Activity covering the eventful period October 2025 to March 2026.  The findings show that China-aligned threat actors remained highly active, with operations shaped by events such as the US military action in Venezuela and ongoing instability in the Gulf region.[1]

Notable events and participants over the 6-month period include:

• FamousSparrow targeted a Venezuelan government entity linked to maritime affairs, appa

Researchers at ESET have published a detailed analysis of Webworm's 2025 operations, a China-aligned Advanced Persistent Threat (APT) group previously focused on organizations in Asia.  The group has now expanded its activities to Europe, targeting government bodies in Belgium, Italy, Poland, Serbia, and Spain, while also partnering with a university in South Africa.[1]

The Webworm threat group has links to other China-aligned actors, including SixLittleMonkeys and FishMonger. In earlier campaig

The cybersecurity community recently received an urgent signal from Darktrace's research team about a sophisticated intrusion campaign linked to Salt Typhoon, a persistent threat actor with ties to China.  The core of this campaign: the exploitation of a critical vulnerability in the Citrix NetScaler Gateway (formerly Citrix ADC/Gateway).  This is not just another vulnerability report; it is a live-fire case study highlighting the strategic importance of patching perimeter devices and the necess