Oct 31, 2025Ravie LakshmananMalware / Threat Intelligence
A China-affiliated threat actor known as UNC6384 has been linked to a fresh set of attacks exploiting an unpatched Windows shortcut vulnerability to target European diplomatic and government entities between September and October 2025.
The activity targeted diplomatic organizations in Hungary, Belgium, Italy, and the Netherlands, as well as government agencies in Serbia, Arctic Wolf said in a technical report published Thursday.
“The attack chain begins with spear-phishing emails containing an embedded URL that is the first of several stages that lead to the delivery of malicious LNK files themed around European Commission meetings, NATO-related workshops, and multilateral diplomatic coordination events,” the cybersecurity company said.
[…]
China based hackers…
American based too, but we call them Microsoft employees and the American “government”.
The problem we have with you guys is that you always rush to the whataboutism mobile when China is mentioned but we all know you wouldn‘t care in the slightest if it was Japanese hackers for example.
Not whatabout. And.Chinese hackers are a major threat as is China. China is agressively violating international law in the south China Sea. They are no one’s friend.
I’m just saying sensitive government functions are compromised by simply using Microsoft. You are compromised before you get hacked.