APT10 (also known as Stone Panda, MenuPass and Red Apollo) is a threat actor known to have been active since at least 2009. Since then it has targeted healthcare, defence, aerospace, government, heavy industry/mining, Managed Service Providers (MSPs) and IT industries, among many other sectors, for the likely purpose of intellectual property theft. In 2017 its targeting of several global MSPs, giving it extensive access to the networks of organisations worldwide, was widely reported by the NCSC and industry partners.