Cyberespionage remains a persistent threat as state-backed groups increasingly target critical sectors worldwide. Recently, North Korea-linked APT Kimsuky launched the AppleSeed campaign targeting defense, activists, and crypto exchanges, while China-affiliated clusters PurpleHaze and ShadowPad have hit over 70 global organizations. Meanwhile, a supply chain malware campaign compromised 16 GlueStack-related npm and PyPI packages to execute commands, capture screenshots, and steal data. Continue reading for the cybersecurity updates from the weekend.