Cybersecurity company CrowdStrike has warned that technology companies have become the world’s most targeted industry as nation-state and cybercriminal groups race to steal artificial intelligence (AI) capabilities, intellectual property, and sensitive data.
According to the CrowdStrike 2026 Technology Threat Landscape Report, China-linked threat actors accounted for more than 58% of state-sponsored intrusions targeting technology organizations. The report says adversaries are increasingly focused on acquiring AI-related innovations and proprietary technologies to accelerate their own development efforts.
Among the most active groups identified were MURKY PANDA, MUSTANG PANDA, OVERCAST PANDA, SUNRISE PANDA, and WARP PANDA, with MURKY PANDA alone impacting more than 340 U.S.-based organizations through password-spraying attacks.
The report also highlights growing cyber activity from North Korea-linked actors. FAMOUS CHOLLIMA allegedly used AI-generated personas and front companies to secure remote IT positions within technology firms, accounting for 47% of state-sponsored interactive intrusions against the sector.
CrowdStrike further noted that cybercriminals are increasingly weaponizing AI to automate credential theft, erase forensic evidence, and scale attacks. Threat actors have also targeted software development ecosystems by compromising open-source supply chains, including popular repositories and software packages used by millions of developers worldwide.
The findings underscore the growing cybersecurity risks surrounding AI innovation, with technology companies facing escalating threats from espionage, extortion, and supply chain attacks as AI becomes a strategic global asset.
