Bleepingcomputer
Chinese Hackers Exploit Windows Vulnerability to Target European Diplomats
First seen 2 Nov 2025, 16:14 UTC
•


•80% similarity
•23.6
Share:
Export
Ask AI about this cluster
Analyzing cluster data...
Referenced clusters:
Something went wrong. Please try again.
Cluster AI
Ask questions about this threat cluster with AI-powered analysis.
Get Researcher $29.99/moArticle Content
Browse articles
A Chinese-linked hacking group, UNC6384, has been exploiting a Windows shortcut vulnerability to conduct cyber espionage against European diplomats in Hungary, Belgium, and other nations. The attacks involve spear phishing emails that deliver malicious LNK files, leading to the deployment of PlugX malware. This campaign has been linked to social engineering tactics centered around diplomatic events and has been active since September 2025.
ThreatCluster AI