Chinese state-backed threat actors are leveraging the instability caused by the Iran war to launch targeted attacks against maritime and energy companies. This shift in tactics is outlined in ESET's 2026 APT Activity Report, which highlights the adaptability of China-aligned advanced persistent threats (APTs) in exploiting regional conflicts to further their interests. The report notes that these APTs are continuing their global campaign, targeting organizations beyond the immediate conflict zone. The involvement of state-aligned actors changes the threat landscape, requiring a different approach to mitigation and response1. This geopolitical dimension introduces complexities that go beyond traditional cybercrime, making it essential for organizations to reassess their security posture in light of these emerging threats. So what matters to practitioners is that they must now consider the geopolitical motivations of threat actors, such as China, when developing their cybersecurity strategies.