AGP Executive Report

In the last 12 hours, the most Belarus-relevant policy signal came from the EU: coverage says the EU adopted its 20th sanctions package against Russia and Belarus, with new restrictions aimed at energy, financial and tech sectors and an expanded anti-circumvention framework (including measures against third-country entities). The same reporting notes that the package also extends/updates Belarus-related sanctions in areas such as tourism, trade, finance/crypto and cybersecurity, and includes legal protections for EU operators. Separately, Belarus appears in the broader sanctions-and-compliance ecosystem through reporting on EU lawmakers’ outreach to Russia (a recruitment drive for a trip to Russia led by a Luxembourgish MEP), which is framed as controversial given suspended EU-Russia parliamentary dialogue.

Another major thread in the last 12 hours is cybersecurity, with multiple articles describing a supply-chain attack involving DAEMON Tools. Kaspersky-linked reporting says compromised, legit-signed DAEMON Tools installers were poisoned to deliver malware/backdoors, with follow-on infections reported on a limited set of systems in Russia and Belarus (and elsewhere). The coverage emphasizes that the malicious versions were distributed via the official DAEMON Tools website, and that researchers attribute the operation to a Chinese-speaking threat actor based on malware artifacts and targeting patterns.

Belarus also features in defense and industrial modernization coverage. One article says Belarus has presented an automated fire control and guidance system for the BM-21 Grad and BM-27 Uragan MLRS, using a tablet/software and compact electronics, with integration designed to require minimal modification and enabling fire control from the cab. The same broader defense context is reinforced by earlier reporting (within the 7-day set) about Belarus-linked production networks supplying components for MLRS ammunition used by Russia, though the most recent item focuses on the automation system itself.

Beyond security and sanctions, the last 12 hours include smaller but concrete Belarus-linked items: a report on BelGee’s rising car sales in Russia (up 47.1% year-on-year in April), and a Belarus-adjacent economic/market update (currency exchange trading showing the US dollar down while the euro, rouble and yuan strengthened). The most recent evidence is also relatively sparse on domestic Belarus policy changes beyond the sanctions and the medicine-registration resolution that appears in the broader 7-day set.

Over the wider 7-day window, coverage adds continuity and background: Poland’s internal security reporting highlights increased Russian and Belarusian intelligence activity and recruitment/infiltration efforts targeting Belarusian opposition groups in Poland; and Ukraine-focused reporting warns that Russia’s economic problems may transmit to Belarus, pushing Minsk toward austerity-like cost cutting. On the information environment, a separate thread describes transnational repression against journalists and argues that exile is “no longer safe,” aligning with the cyber and sanctions narratives about cross-border pressure.

Over the last 12 hours, the most Belarus-relevant thread in the coverage is economic and security spillover from Russia. Ukraine’s Foreign Intelligence Service says Russia’s economic problems are already feeding into Belarus, with Minsk shifting toward austerity and cutting costs in areas such as the “One District – One Project” program (only 98 of 220 facilities completed). The same reporting links the Belarus-Russia economic dependence to a delayed transmission mechanism (three to four months), framing the situation as an “immediate future” challenge for Belarus.

In parallel, Belarus appears in regional industrial and diplomatic cooperation stories. Azerbaijan and Belarus officials discussed expanding industrial cooperation, including mechanical engineering and the production of industrial goods, and reviewed prospects for a production facility in Azerbaijan’s Aghdam Industrial Park. Separately, a Belarus consul general in Dubai met DEWA’s leadership to explore renewable energy, innovation, and sustainable development cooperation—an example of Belarus engaging partners beyond the immediate Russia-linked sphere.

A major non-Belarus-specific but highly consequential development in the last 12 hours is a cybersecurity incident that explicitly includes Belarus. Kaspersky reports a supply-chain attack targeting the Daemon Tools disk imaging software: attackers allegedly poisoned legitimate installers distributed from the official site, with the compromise described as active since April 8 and affecting government and industry systems in Russia, Belarus, and Thailand. The reporting emphasizes that the malicious code was injected into specific Daemon Tools components and that the campaign used a backdoor mechanism to execute commands and deploy payloads.

Finally, the last 12 hours also include Belarus-linked coverage in sports and finance, though these are more “watch” items than clear policy shifts. Aryna Sabalenka renewed calls for a boycott of Grand Slams “at some point” over prize-money and revenue-share disputes, echoing broader player unrest around Roland Garros. On the financial side, VTB-related items focus on Russian consumer lending and mortgage issuance (including a four-tranche securitization deal and a reported ~10% April mortgage market increase), with VTB’s regional footprint including Belarus mentioned in the company background.

Because the most recent Belarus-specific evidence is concentrated in the Russia-to-Belarus economic spillover and the Daemon Tools cyberattack, the overall picture for Belarus in this rolling window is dominated by external pressure and risk exposure rather than internal reforms or major new domestic initiatives.