Inside the technology sector’s threat landscape

For the past several years, the technology sector has remained the most targeted sector by eCrime and state-sponsored adversaries. The persistent volume of hands-on-keyboard intrusions targeting technology entities highlights adversaries’ sustained interest in interactive operations, which provide the flexibility to pursue theft, extortion, intelligence collection, or IT worker infiltration once access is established.

This trend continued into Q1 2026, where hands-on-keyboard intrusions targeting technology entities accounted for 20% of all interactive intrusions observed; this was 26% more hands-on-keyboard intrusions than the second most targeted sector (Consulting and Professional Services) experienced in Q1 2026.

Between April 1, 2025, and March 31, 2026, North America-based technology organizations experienced the highest level of targeting from both eCrime and state-sponsored threat actors, accounting for 45% of all hands-on-keyboard intrusions targeting the sector.

Read more at CrowdStrike