A Chinese state-linked APT campaign is conducting intelligence collection against Indian banking institutions and South Korean policy organizations using phishing, credential abuse, and obfuscated tooling. No specific CVEs, malware families, or named APT groups are confirmed. No IOCs are available. Detection relies entirely on behavioral and anomaly-based controls aligned to the mapped ATT&CK techniques.