DoNot APT Strikes Again: European Diplomacy Meets Cyber Espionage Comedy

The DoNot APT group has widened its horizons by launching a spear-phishing attack on a European foreign affairs ministry. Trellix reveals how the group used LoptikMod malware and cunning tactics that would make a spy novelist proud. This cyber espionage campaign is a wake-up call for global diplomacy.

3P
Published: July 11, 2025 11:26 pmAdded: July 11, 2025 at 4:36 pmAssembled by: The Editor
Pro Dashboard

Hot Take:

When hackers start crashing your European diplomatic party, you know it’s time to tighten the guest list. The DoNot APT group’s European escapade is a not-so-subtle reminder that cyber espionage knows no borders. Who knew international relations could be so… clickbait?

Key Points:

  • DoNot APT group, linked to India, targets a European foreign affairs ministry.
  • The attack used sophisticated spear-phishing techniques involving Google Drive links.
  • Malicious emails impersonated European defense officials discussing a visit to Bangladesh.
  • The campaign deployed LoptikMod malware, active since 2018, for data theft.
  • Organisations are urged to beef up cybersecurity measures against such threats.

Membership Required

 You must be a member to access this content.

View Membership Levels
Already a member? Log in here
The Nimble Nerd
powered by the NSA, er,  GDPR Cookie Compliance
Confessional Booth of Our Digital Sins

Okay, deep breath, let's get this over with. In the grand act of digital self-sabotage, we've littered this site with cookies. Yep, we did that. Why? So your highness can have a 'premium' experience or whatever. These traitorous cookies hide in your browser, eagerly waiting to welcome you back like a guilty dog that's just chewed your favorite shoe. And, if that's not enough, they also tattle on which parts of our sad little corner of the web you obsess over. Feels dirty, doesn't it?