{"id":25256,"date":"2019-02-14T14:32:40","date_gmt":"2019-02-14T14:32:40","guid":{"rendered":"https:\/\/packetstormsecurity.com\/news\/view\/29826\/MacOS-Trojan-Disables-Gatekeeper-To-Deploy-Malicious-Payloads.html"},"modified":"2019-02-14T14:32:40","modified_gmt":"2019-02-14T14:32:40","slug":"macos-trojan-disables-gatekeeper-to-deploy-malicious-payloads","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/macos-trojan-disables-gatekeeper-to-deploy-malicious-payloads\/","title":{"rendered":"MacOS Trojan Disables Gatekeeper To Deploy Malicious Payloads"},"content":{"rendered":"<div><img decoding=\"async\" src=\"https:\/\/zdnet3.cbsistatic.com\/hub\/i\/r\/2019\/02\/14\/b4b7cda4-f6a1-415e-aca1-4912bf16d115\/thumbnail\/770x578\/6d589348e3f209ed5337bb787e09016c\/screenshot-2019-02-14-at-09-01-10.png\" class=\"ff-og-image-inserted\"\/><\/div>\n<p>Researchers have uncovered a new variant of the Shlayer macOS malware which is able to disable Gatekeeper after infecting a system to deploy unsigned payloads.<\/p>\n<p>This week, cybersecurity researchers from Carbon Black&#8217;s Threat Analysis Unit (TAU) team said that the latest version of the malware is primarily disguised <a href=\"https:\/\/www.carbonblack.com\/2019\/02\/12\/tau-threat-intelligence-notification-new-macos-malware-variant-of-shlayer-osx-discovered\/\" target=\"_blank\" rel=\"noopener noreferrer\">as a fake Adobe Flash updater<\/a> and has been spreading via malicious websites, hijacked domains, and malvertising.<\/p>\n<div class=\"relatedContent alignRight\">\n<h3 class=\"heading\"><span class=\"int\">More security news<\/span><\/h3>\n<\/div>\n<p>Three variants of Shlayer were first discovered <a href=\"https:\/\/www.intego.com\/mac-security-blog\/osxshlayer-new-mac-malware-comes-out-of-its-shell\/\" target=\"_blank\" rel=\"noopener noreferrer\">by Intego in 2018<\/a> on BitTorrent file sharing sites.\u00a0<\/p>\n<p>The Trojan leveraged shell scripts to download malicious payloads and adware, most often acting as a dropper for OSX\/MacOffers &#8212; BundleMeUp, Mughthesec, and Adload &#8212; as well as the OSX\/Bundlore adware.<\/p>\n<p>The new Shlayer samples affect Apple macOS Mojave versions 10.10.5 to 10.14.3. It is not believed that other operating systems, such as Microsoft Windows, are impacted.<\/p>\n<p>Shlayer uses code signing &#8212; a cryptographic digital signature ascribed to software &#8212; in order to bypass Gatekeeper protections. Developers under the Apple Developer Program are able to sign their apps to prove legitimacy, but unfortunately, the process is used by genuine app creators and threat actors alike.<\/p>\n<p>The new malware variants arrive on victim systems as DMG files through .PKG, .ISO, and .ZIP payloads which are signed off using this technique. \u00a0<\/p>\n<section class=\"sharethrough-top\" data-component=\"medusaContentRecommendation\" data-medusa-content-recommendation-options=\"{&quot;promo&quot;:&quot;promo_ZD_recommendation_sharethrough_top_in_article_desktop&quot;,&quot;spot&quot;:&quot;dfp-in-article&quot;}\">\n<\/section>\n<p><strong>See also:\u00a0<\/strong><a href=\"https:\/\/www.zdnet.com\/article\/this-new-malware-exploits-bugs-in-antivirus-software-to-steal-your-data\/\" target=\"_blank\">This Trojan exploits antivirus software to steal your data<\/a><\/p>\n<p>Once the .DMG file has been installed, a .command script is executed from a hidden directory which decrypts a second script &#8212; containing yet another script &#8212; which is then finally executed.<\/p>\n<p>The script will then collect information relating to the system, including macOS version and unique identifiers, before generating a session GUID and attempting to escalate its privilege level to root with sudo using <a href=\"https:\/\/www.youtube.com\/watch?v=mBwXkqJ4Z6c\" target=\"_blank\" rel=\"noopener noreferrer\">a technique discussed<\/a> by researcher Patrick Wardle at Defcon 2017.<\/p>\n<p><strong>TechRepublic:\u00a0<\/strong><a href=\"https:\/\/www.techrepublic.com\/article\/how-to-protect-and-secure-your-web-browsing-with-the-brave-browser\/\" target=\"_blank\" rel=\"noopener noreferrer\">How to protect and secure your web browsing with the Brave browser<\/a><\/p>\n<p>Once these privileges have been escalated, the script will attempt to disable Gatekeeper using spctl and download additional payloads, generally thought to be adware, just as in the case of past Shlayer variants. \u00a0<\/p>\n<p>&#8220;This allows the whitelisted software to run without user intervention even if the system is set to disallow unknown applications downloaded from the Internet,&#8221; TAU says. &#8220;Furthermore, many of the payloads contained within the second stage download are signed with a valid developer ID.&#8221;<\/p>\n<p><strong>CNET:\u00a0<\/strong><a href=\"https:\/\/www.cnet.com\/news\/government-watchdog-finds-weak-enforcement-in-us-privacy-regulations\/\" target=\"_blank\" rel=\"noopener noreferrer\">Government watchdog finds weak enforcement of US privacy regulations<\/a><\/p>\n<p>While adware may not seem like anything more than a nuisance, such software &#8212; as well as the Trojan&#8217;s unfettered ability to download other payloads &#8212; can be a serious threat to your privacy and security. If the threat actors chose, they could, for example, download malware which could damage systems, cryptocurrency miners, or ransomware.<\/p>\n<p>TAU has provided an indicator of compromise (IOC) list <a href=\"https:\/\/github.com\/carbonblack\/tau-tools\/tree\/master\/threat_hunting\/IOCs\/shlayer\" target=\"_blank\" rel=\"noopener noreferrer\">on GitHub<\/a>.<\/p>\n<p>Earlier this month, developer Jeff Johnson revealed a bug in an API used by macOS Mojave which grants access to <a href=\"https:\/\/www.zdnet.com\/article\/new-macos-security-flaw-lets-malicious-apps-steal-your-safari-browsing-history\/\" target=\"_blank\">Safari browsing data<\/a> without folder protections. Apple has acknowledged the problem.\u00a0<\/p>\n<h3>Previous and related coverage<\/h3>\n<p>READ MORE <a href=\"https:\/\/packetstormsecurity.com\/news\/view\/29826\/MacOS-Trojan-Disables-Gatekeeper-To-Deploy-Malicious-Payloads.html\">HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>READ MORE HERE&#8230;<\/p>\n","protected":false},"author":2,"featured_media":25257,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[60],"tags":[5842],"class_list":["post-25256","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-packet-storm","tag-headlinemalwaretrojanapple"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v26.8 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>MacOS Trojan Disables Gatekeeper To Deploy Malicious Payloads 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/macos-trojan-disables-gatekeeper-to-deploy-malicious-payloads\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"MacOS Trojan Disables Gatekeeper To Deploy Malicious Payloads 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/macos-trojan-disables-gatekeeper-to-deploy-malicious-payloads\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2019-02-14T14:32:40+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/02\/macos-trojan-disables-gatekeeper-to-deploy-malicious-payloads.png\" \/>\n\t<meta property=\"og:image:width\" content=\"770\" \/>\n\t<meta property=\"og:image:height\" content=\"578\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.threatshub.org\/blog\/macos-trojan-disables-gatekeeper-to-deploy-malicious-payloads\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.threatshub.org\/blog\/macos-trojan-disables-gatekeeper-to-deploy-malicious-payloads\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"MacOS Trojan Disables Gatekeeper To Deploy Malicious Payloads\",\"datePublished\":\"2019-02-14T14:32:40+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.threatshub.org\/blog\/macos-trojan-disables-gatekeeper-to-deploy-malicious-payloads\/\"},\"wordCount\":511,\"publisher\":{\"@id\":\"https:\/\/www.threatshub.org\/blog\/#organization\"},\"image\":{\"@id\":\"https:\/\/www.threatshub.org\/blog\/macos-trojan-disables-gatekeeper-to-deploy-malicious-payloads\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/02\/macos-trojan-disables-gatekeeper-to-deploy-malicious-payloads.png\",\"keywords\":[\"headline,malware,trojan,apple\"],\"articleSection\":[\"Packet Storm\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.threatshub.org\/blog\/macos-trojan-disables-gatekeeper-to-deploy-malicious-payloads\/\",\"url\":\"https:\/\/www.threatshub.org\/blog\/macos-trojan-disables-gatekeeper-to-deploy-malicious-payloads\/\",\"name\":\"MacOS Trojan Disables Gatekeeper To Deploy Malicious Payloads 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\/\/www.threatshub.org\/blog\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.threatshub.org\/blog\/macos-trojan-disables-gatekeeper-to-deploy-malicious-payloads\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.threatshub.org\/blog\/macos-trojan-disables-gatekeeper-to-deploy-malicious-payloads\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/02\/macos-trojan-disables-gatekeeper-to-deploy-malicious-payloads.png\",\"datePublished\":\"2019-02-14T14:32:40+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\/\/www.threatshub.org\/blog\/macos-trojan-disables-gatekeeper-to-deploy-malicious-payloads\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.threatshub.org\/blog\/macos-trojan-disables-gatekeeper-to-deploy-malicious-payloads\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.threatshub.org\/blog\/macos-trojan-disables-gatekeeper-to-deploy-malicious-payloads\/#primaryimage\",\"url\":\"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/02\/macos-trojan-disables-gatekeeper-to-deploy-malicious-payloads.png\",\"contentUrl\":\"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/02\/macos-trojan-disables-gatekeeper-to-deploy-malicious-payloads.png\",\"width\":770,\"height\":578},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.threatshub.org\/blog\/macos-trojan-disables-gatekeeper-to-deploy-malicious-payloads\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.threatshub.org\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"headline,malware,trojan,apple\",\"item\":\"https:\/\/www.threatshub.org\/blog\/tag\/headlinemalwaretrojanapple\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"MacOS Trojan Disables Gatekeeper To Deploy Malicious Payloads\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.threatshub.org\/blog\/#website\",\"url\":\"https:\/\/www.threatshub.org\/blog\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\/\/www.threatshub.org\/blog\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.threatshub.org\/blog\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\/\/www.threatshub.org\/blog\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/x.com\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"MacOS Trojan Disables Gatekeeper To Deploy Malicious Payloads 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/macos-trojan-disables-gatekeeper-to-deploy-malicious-payloads\/","og_locale":"en_US","og_type":"article","og_title":"MacOS Trojan Disables Gatekeeper To Deploy Malicious Payloads 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/macos-trojan-disables-gatekeeper-to-deploy-malicious-payloads\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2019-02-14T14:32:40+00:00","og_image":[{"width":770,"height":578,"url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/02\/macos-trojan-disables-gatekeeper-to-deploy-malicious-payloads.png","type":"image\/png"}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/macos-trojan-disables-gatekeeper-to-deploy-malicious-payloads\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/macos-trojan-disables-gatekeeper-to-deploy-malicious-payloads\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"MacOS Trojan Disables Gatekeeper To Deploy Malicious Payloads","datePublished":"2019-02-14T14:32:40+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/macos-trojan-disables-gatekeeper-to-deploy-malicious-payloads\/"},"wordCount":511,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/macos-trojan-disables-gatekeeper-to-deploy-malicious-payloads\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/02\/macos-trojan-disables-gatekeeper-to-deploy-malicious-payloads.png","keywords":["headline,malware,trojan,apple"],"articleSection":["Packet Storm"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/macos-trojan-disables-gatekeeper-to-deploy-malicious-payloads\/","url":"https:\/\/www.threatshub.org\/blog\/macos-trojan-disables-gatekeeper-to-deploy-malicious-payloads\/","name":"MacOS Trojan Disables Gatekeeper To Deploy Malicious Payloads 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/macos-trojan-disables-gatekeeper-to-deploy-malicious-payloads\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/macos-trojan-disables-gatekeeper-to-deploy-malicious-payloads\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/02\/macos-trojan-disables-gatekeeper-to-deploy-malicious-payloads.png","datePublished":"2019-02-14T14:32:40+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/macos-trojan-disables-gatekeeper-to-deploy-malicious-payloads\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/macos-trojan-disables-gatekeeper-to-deploy-malicious-payloads\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/macos-trojan-disables-gatekeeper-to-deploy-malicious-payloads\/#primaryimage","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/02\/macos-trojan-disables-gatekeeper-to-deploy-malicious-payloads.png","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/02\/macos-trojan-disables-gatekeeper-to-deploy-malicious-payloads.png","width":770,"height":578},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/macos-trojan-disables-gatekeeper-to-deploy-malicious-payloads\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"headline,malware,trojan,apple","item":"https:\/\/www.threatshub.org\/blog\/tag\/headlinemalwaretrojanapple\/"},{"@type":"ListItem","position":3,"name":"MacOS Trojan Disables Gatekeeper To Deploy Malicious Payloads"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/25256","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=25256"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/25256\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media\/25257"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=25256"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=25256"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=25256"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}