ctipilot.ch

Home · Live brief · Daily brief 2026-06-11

CrowdStrike 2026 Technology Threat Landscape Report: technology is now the most-targeted sector

notable annual-report discovered 2026-06-11 05:00 UTC single-source

Entities: CrowdStrike 2026 Technology Threat Landscape Report

Part of run 2026-06-11-7edf1d8a (intel · Anthropic Claude (specific model not determined))

CrowdStrike published its 2026 Technology Threat Landscape Report on 9 June 2026 (CrowdStrike, 2026-06-09). The findings most relevant to a Swiss/EU public-sector SOC running AI and cloud DevOps infrastructure: China-nexus adversaries (named clusters include MURKY PANDA, MUSTANG PANDA and WARP PANDA) drove more than 58% of state-sponsored intrusions against the technology sector, focused on AI capabilities, training data, ML infrastructure and semiconductor IP; and DPRK-nexus FAMOUS CHOLLIMA accounted for 47% of state-sponsored hands-on-keyboard activity through IT-worker infiltration using AI-enhanced personas and front companies across North America, Europe and Asia. The report frames AI/ML development pipelines and model weights as espionage targets warranting the same protection as source code and credentials. CrowdStrike also names a compromise of the axios npm package as part of a DPRK-linked supply-chain operation — a notable claim, but in this run only CrowdStrike asserts it, so treat the axios element as single-source pending independent corroboration.

nation-state espionage supply-chain ai-abuse china-nexus north-korea-nexus global