NSHC’s October 2025 intelligence roundup says SectorA activity used multi-stage social engineering against Windows, macOS, and Linux systems, with software developers and technical experts among the main targets. The SectorA section describes fake software updates, job offers, malicious payload distribution through GitHub, fake social-media profiles, phishing, and job-scam infrastructure. Reported malware includes BeaverTail, OtterCookie, and OtterCandy, used for system information collection, credential theft, data exfiltration, remote command execution, and financially motivated activity against cryptocurrency and Web3 projects. The excerpt also notes obfuscation, multi-stage C2 infrastructure, scheduler-based persistence, and PowerShell command execution, making the activity relevant to monitoring developer-focused supply-chain and crypto-theft tradecraft.