{"id":45143,"date":"2022-02-04T16:18:23","date_gmt":"2022-02-04T16:18:23","guid":{"rendered":"https:\/\/www.darkreading.com\/threat-intelligence\/china-linked-group-attacked-taiwanese-financial-firms-for-18-months"},"modified":"2022-02-04T16:18:23","modified_gmt":"2022-02-04T16:18:23","slug":"china-linked-group-attacked-taiwanese-financial-firms-for-18-months","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/china-linked-group-attacked-taiwanese-financial-firms-for-18-months\/","title":{"rendered":"China-Linked Group Attacked Taiwanese Financial Firms for 18 Months"},"content":{"rendered":"<div><img decoding=\"async\" src=\"https:\/\/eu-images.contentstack.com\/v3\/assets\/blt66983808af36a8ef\/bltea55a419f189191a\/618da92e4b0f747768d03f5c\/apt_Profit_Image_shutterstock.jpg\" class=\"ff-og-image-inserted\"><\/div>\n<p>The Chinese state-sponsored threat group known as Antlion has targeted at least six financial institutions in Taiwan over the past 18 months, installing a custom backdoor program on compromised systems and exfiltrating sensitive data from the companies.<\/p>\n<p>The cyber-espionage group maintained a long-term presence in victims&#8217; networks, exploring one manufacturing firm&#8217;s network for nearly six months and a financial organization for more than eight months, Symantec, the security division of Broadcom, stated in its analysis on the campaign. In the past, Antlion \u2014 sometimes known as Pirate Panda and Tropic Trooper \u2014 has conducted espionage on targets in a number of countries located near the South China Sea, such as India, Vietnam, and the Philippines.<\/p>\n<p>More recently, the Antlion group has targeted mainly financial organizations in Taiwan, using living-off-the-land techniques to steal business contact information, transaction data, and investment software, says Alan Neville, an analyst on Symantec&#8217;s Threat Hunter Team<\/p>\n<p>&#8220;We can only speculate on their true goal,&#8221; he says. &#8220;It&#8217;s clear the group are well organized and professional in that we can see the attackers remained active on compromised networks for long periods of time and were able to conduct these attacks against financial organizations in parallel.&#8221;<\/p>\n<p>The attacks coincide with increasing tensions between China and Taiwan over its political status.&nbsp;Over the last year, China has increased military activity near Taiwan, and the cyberattacks appear to be an extension of that policy.<\/p>\n<p>In <a href=\"https:\/\/symantec-enterprise-blogs.security.com\/blogs\/threat-intelligence\/china-apt-antlion-taiwan-financial-attacks\" target=\"_blank\" rel=\"noopener\">the latest analysis<\/a>, Symantec&#8217;s threat-hunting team linked the cyber-espionage group to intrusions into two different financial institutions and a manufacturing company. However, Neville clarifies that, over the past year, the threat hunting team has investigated attacks against six financial institutions, a departure from Antlion&#8217;s typically broader range of targets in the government, transportation, and media sectors.<\/p>\n<p><strong>Stolen Credentials<\/strong><\/p>\n<p>Among common elements in Antlion&#8217;s arsenal is a custom backdoor called xPack that allowed the attackers extensive access to compromised systems by issuing Windows Management Instrumentation (WMI) commands remotely. The attackers also apparently used SMB shares to allow files to be copied from the compromised systems to newly infected machines. The group also conducted broad searches for credentials and exfiltrated the sensitive information for later use.<\/p>\n<p>The xPack backdoor is a custom .NET loader focused on the initial access, allowing new features to be downloaded, decrypted, and executed on compromised machines.<\/p>\n<p>In a December 2020 intrusion of a financial company, the attackers used WMI commands to gather information on the compromised system and within minutes dumped the credentials, according to Symantec&#8217;s analysis. During the end-of-the-month holidays, the attackers moved laterally to other systems, continuing to collect credentials until early summer 2021.<\/p>\n<p>&#8220;Antlion is believed to have been involved in espionage activities since at least 2011, and this recent activity shows that it is still an actor to be aware of more than 10 years after it first appeared,&#8221; Symantec&#8217;s Threat Hunting Team stated in the analysis. &#8220;The length of time that Antlion was able to spend on victim networks is notable, with the group able to spend several months on victim networks, affording plenty of time to seek out and exfiltrate potentially sensitive information from infected organizations.&#8221;<\/p>\n<p><strong>How to Defend Against Antlion-Type Attacks<\/strong><br \/>Because the use of WMI commands, SMB shares, and other living-off-the-land techniques, companies should monitor the use of dual-use programs inside the network, enforcing policies such as keeping PowerShell up to date and allowing RDP only from specific, known IP addresses, Symantec&#8217;s Neville says.<\/p>\n<p>&#8220;Many of these tools are used by attackers to move laterally undetected through a network,&#8221; he says. &#8220;Broadly speaking, [companies] should adopt a defense-in-depth strategy, using multiple detection, protection, and hardening technologies to mitigate risk at each point of the potential attack chain.&#8221;<\/p>\n<p>Read More <a href=\"https:\/\/www.darkreading.com\/threat-intelligence\/china-linked-group-attacked-taiwanese-financial-firms-for-18-months\">HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>The Antlion group, also known as Pirate Panda and Tropic Trooper, has shifted to targeting mainly Taiwan, using custom backdoors against financial organizations.Read More <a href=\"https:\/\/www.darkreading.com\/threat-intelligence\/china-linked-group-attacked-taiwanese-financial-firms-for-18-months\">HERE<\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[151],"tags":[],"class_list":["post-45143","post","type-post","status-publish","format-standard","hentry","category-darkreading-ti"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.6 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>China-Linked Group Attacked Taiwanese Financial Firms for 18 Months 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/china-linked-group-attacked-taiwanese-financial-firms-for-18-months\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"China-Linked Group Attacked Taiwanese Financial Firms for 18 Months 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/china-linked-group-attacked-taiwanese-financial-firms-for-18-months\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2022-02-04T16:18:23+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/eu-images.contentstack.com\/v3\/assets\/blt66983808af36a8ef\/bltea55a419f189191a\/618da92e4b0f747768d03f5c\/apt_Profit_Image_shutterstock.jpg\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/china-linked-group-attacked-taiwanese-financial-firms-for-18-months\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/china-linked-group-attacked-taiwanese-financial-firms-for-18-months\\\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"China-Linked Group Attacked Taiwanese Financial Firms for 18 Months\",\"datePublished\":\"2022-02-04T16:18:23+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/china-linked-group-attacked-taiwanese-financial-firms-for-18-months\\\/\"},\"wordCount\":627,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/china-linked-group-attacked-taiwanese-financial-firms-for-18-months\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/eu-images.contentstack.com\\\/v3\\\/assets\\\/blt66983808af36a8ef\\\/bltea55a419f189191a\\\/618da92e4b0f747768d03f5c\\\/apt_Profit_Image_shutterstock.jpg\",\"articleSection\":[\"DarkReading |TI\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/china-linked-group-attacked-taiwanese-financial-firms-for-18-months\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/china-linked-group-attacked-taiwanese-financial-firms-for-18-months\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/china-linked-group-attacked-taiwanese-financial-firms-for-18-months\\\/\",\"name\":\"China-Linked Group Attacked Taiwanese Financial Firms for 18 Months 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/china-linked-group-attacked-taiwanese-financial-firms-for-18-months\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/china-linked-group-attacked-taiwanese-financial-firms-for-18-months\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/eu-images.contentstack.com\\\/v3\\\/assets\\\/blt66983808af36a8ef\\\/bltea55a419f189191a\\\/618da92e4b0f747768d03f5c\\\/apt_Profit_Image_shutterstock.jpg\",\"datePublished\":\"2022-02-04T16:18:23+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/china-linked-group-attacked-taiwanese-financial-firms-for-18-months\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/china-linked-group-attacked-taiwanese-financial-firms-for-18-months\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/china-linked-group-attacked-taiwanese-financial-firms-for-18-months\\\/#primaryimage\",\"url\":\"https:\\\/\\\/eu-images.contentstack.com\\\/v3\\\/assets\\\/blt66983808af36a8ef\\\/bltea55a419f189191a\\\/618da92e4b0f747768d03f5c\\\/apt_Profit_Image_shutterstock.jpg\",\"contentUrl\":\"https:\\\/\\\/eu-images.contentstack.com\\\/v3\\\/assets\\\/blt66983808af36a8ef\\\/bltea55a419f189191a\\\/618da92e4b0f747768d03f5c\\\/apt_Profit_Image_shutterstock.jpg\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/china-linked-group-attacked-taiwanese-financial-firms-for-18-months\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"China-Linked Group Attacked Taiwanese Financial Firms for 18 Months\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"China-Linked Group Attacked Taiwanese Financial Firms for 18 Months 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/china-linked-group-attacked-taiwanese-financial-firms-for-18-months\/","og_locale":"en_US","og_type":"article","og_title":"China-Linked Group Attacked Taiwanese Financial Firms for 18 Months 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/china-linked-group-attacked-taiwanese-financial-firms-for-18-months\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2022-02-04T16:18:23+00:00","og_image":[{"url":"https:\/\/eu-images.contentstack.com\/v3\/assets\/blt66983808af36a8ef\/bltea55a419f189191a\/618da92e4b0f747768d03f5c\/apt_Profit_Image_shutterstock.jpg","type":"","width":"","height":""}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/china-linked-group-attacked-taiwanese-financial-firms-for-18-months\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/china-linked-group-attacked-taiwanese-financial-firms-for-18-months\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"China-Linked Group Attacked Taiwanese Financial Firms for 18 Months","datePublished":"2022-02-04T16:18:23+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/china-linked-group-attacked-taiwanese-financial-firms-for-18-months\/"},"wordCount":627,"commentCount":0,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/china-linked-group-attacked-taiwanese-financial-firms-for-18-months\/#primaryimage"},"thumbnailUrl":"https:\/\/eu-images.contentstack.com\/v3\/assets\/blt66983808af36a8ef\/bltea55a419f189191a\/618da92e4b0f747768d03f5c\/apt_Profit_Image_shutterstock.jpg","articleSection":["DarkReading |TI"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.threatshub.org\/blog\/china-linked-group-attacked-taiwanese-financial-firms-for-18-months\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/china-linked-group-attacked-taiwanese-financial-firms-for-18-months\/","url":"https:\/\/www.threatshub.org\/blog\/china-linked-group-attacked-taiwanese-financial-firms-for-18-months\/","name":"China-Linked Group Attacked Taiwanese Financial Firms for 18 Months 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/china-linked-group-attacked-taiwanese-financial-firms-for-18-months\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/china-linked-group-attacked-taiwanese-financial-firms-for-18-months\/#primaryimage"},"thumbnailUrl":"https:\/\/eu-images.contentstack.com\/v3\/assets\/blt66983808af36a8ef\/bltea55a419f189191a\/618da92e4b0f747768d03f5c\/apt_Profit_Image_shutterstock.jpg","datePublished":"2022-02-04T16:18:23+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/china-linked-group-attacked-taiwanese-financial-firms-for-18-months\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/china-linked-group-attacked-taiwanese-financial-firms-for-18-months\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/china-linked-group-attacked-taiwanese-financial-firms-for-18-months\/#primaryimage","url":"https:\/\/eu-images.contentstack.com\/v3\/assets\/blt66983808af36a8ef\/bltea55a419f189191a\/618da92e4b0f747768d03f5c\/apt_Profit_Image_shutterstock.jpg","contentUrl":"https:\/\/eu-images.contentstack.com\/v3\/assets\/blt66983808af36a8ef\/bltea55a419f189191a\/618da92e4b0f747768d03f5c\/apt_Profit_Image_shutterstock.jpg"},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/china-linked-group-attacked-taiwanese-financial-firms-for-18-months\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"China-Linked Group Attacked Taiwanese Financial Firms for 18 Months"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/45143","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=45143"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/45143\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=45143"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=45143"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=45143"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}