China-linked hackers, specifically groups associated with PurpleHaze and ShadowPad, targeted over 70 organizations globally, including government and critical infrastructure entities, between June 2024 and March 2025. The campaigns involved sophisticated reconnaissance and intrusion efforts, utilizing tools like ShadowPad and GOREshell. SentinelOne, a cybersecurity firm, detected and mitigated these attacks, highlighting the ongoing threat posed by these actors.