CrowdStrike reported that Chinese entities accounted for more than 58% of state-sponsored cyberattacks targeting tech companies over the past 12 months, with AI infrastructure emerging as a primary focus.
Chinese state-sponsored threat actors dominated cyberattack campaigns against technology firms in the year ending March 31, according to cybersecurity firm CrowdStrike's latest threat assessment.
The data reveals a significant shift in targeting priorities, with attackers increasingly focusing on artificial intelligence assets and infrastructure. This concentration reflects growing geopolitical competition around AI development and deployment.
CrowdStrike's findings underscore the escalating cyber threat landscape for tech companies operating in or serving U.S. markets. The attacks align with broader patterns of Chinese entities seeking to acquire intellectual property and gain competitive advantages in emerging technologies.
The 58% figure substantially outpaces other state-sponsored actors during the same period. The concentration of attacks from China-based entities suggests coordinated, well-resourced campaigns rather than isolated incidents.
AI systems have become increasingly valuable targets for espionage and sabotage. Access to training data, model architectures, and algorithmic innovations provides significant strategic advantages in commercial and defense applications.
Tech companies have responded with enhanced security protocols and incident response capabilities. However, the sophistication and resources deployed by state-sponsored groups continue to challenge defensive measures.
The findings carry implications for U.S. policymakers considering regulations around technology exports and security requirements for AI development. Concerns about intellectual property theft and national security vulnerabilities have prompted calls for stricter oversight of sensitive technology sectors.
CrowdStrike's threat intelligence data comes from monitoring activity across its global client base, providing visibility into attack patterns and threat actor behaviors. The firm regularly publishes threat assessments that influence industry security practices and government policy discussions.
The emphasis on AI-focused attacks highlights how geopolitical competition is extending into emerging technology domains, with state actors prioritizing assets that will shape technological leadership in the coming decade.
Apple plans to move its Hide My Email feature to a different domain in the coming weeks, a change that could reduce the privacy protection the tool currently provides.
A security researcher discovered a critical vulnerability in FIFA's internal systems that could have allowed unauthorized access to modify World Cup television broadcasts. The flaw exposed multiple internal platforms to potential compromise.
Researchers discovered at least 15 malicious plugins on the JetBrains Marketplace designed to steal AI API keys from developers. The plugins bypassed security checks and posed as legitimate development tools.