{"id":46693,"date":"2022-05-18T14:00:00","date_gmt":"2022-05-18T14:00:00","guid":{"rendered":"https:\/\/www.darkreading.com\/attacks-breaches\/how-threat-actors-are-one-click-away-from-becoming-quasi-apts"},"modified":"2022-05-18T14:00:00","modified_gmt":"2022-05-18T14:00:00","slug":"how-threat-actors-are-a-click-away-from-becoming-quasi-apts","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/how-threat-actors-are-a-click-away-from-becoming-quasi-apts\/","title":{"rendered":"How Threat Actors Are a Click Away From Becoming Quasi-APTs"},"content":{"rendered":"<div><img decoding=\"async\" src=\"https:\/\/eu-images.contentstack.com\/v3\/assets\/blt66983808af36a8ef\/bltf52a853fdf6ebd2a\/62840ef2310f0577232428ab\/APT_Panther_Media_GmbH_Alamy.jpg\" class=\"ff-og-image-inserted\"><\/div>\n<p>The first shots fired in the current conflict between Russia and Ukraine were not by firearms, but keystrokes. In this new-age war, the cybersphere is a primary battleground, and advanced threat actor groups are the foot soldiers. This Russian-Ukrainian cyber battlefield is complex and multipolar, populated by many disparate threat groups, each determined to do their part \u2014 and take their share of the winnings.<strong><br \/><\/strong><\/p>\n<p>Moscow deviated from the standard norms of conventional warfare when it attacked Georgia in 2008, and had been deploying major cyberattacks against Georgian websites and Internet infrastructure. This was reported to be a Kremlin-backed, nation-state campaign, according to the <a href=\"https:\/\/www.scribd.com\/document\/47787324\/Cyberwar-Case-Study-Georgia-2008\" target=\"_blank\" rel=\"noopener\">Small War Journal<\/a>. It was considered the &#8220;first case in history of a coordinated cyberspace domain attack synchronized with major combat actions in the other warfighting domains.&#8221;<\/p>\n<p>In the past year, the escalation of cybercrime has been made blatantly manifest through the spike in ransomware attacks, the deployment of pernicious new malware, and the unprecedented surge in cybercriminals and cyber incidents \u2014 coordinated and conducted within the illicit underground communities of the Dark Web. <\/p>\n<p>CISOs of 2022 must maintain constant vigilance, ensuring their organization has the capacity to track, monitor, and remediate threats coming in from multiple focal points. It\u2019s not only the well-known <a href=\"https:\/\/www.darkreading.com\/attacks-breaches\/russian-apt-steps-up-malicious-activity-in-ukraine\" target=\"_blank\" rel=\"noopener\">advanced persistent threats<\/a> (APTs) anymore, but your average Dark Web actor or the local anonymous chapter.<\/p>\n<p>It is not uncommon to see threat actor groups declaring their latest victories in the ongoing digital battle, be it pro-Ukranian threat-actor groups announcing their successful breach of Russian federal organizations or pro-Russian threat actors targeting Western infrastructure. A brief scroll through these groups&#8217; Twitter profiles and telegram channels is sufficient to see how structured and organized they behave. <\/p>\n<p><strong>Mass Mobilization<\/strong><br \/>How can we explain the mass mobilization of threat actors of all levels of sophistication, taking to the cyber battlefield to play their part in a conventional war between nation-states? It would be simplistic to attribute this massive paradigm shift only to advancements in technology. Instead, this external, global change is deeply connected to the changing internal dynamics of the cybercriminal underground itself. <\/p>\n<p>The proliferation of cyber offensive capabilities on a global scale has unfolded in tandem with the proliferation of knowledge within the cybercriminal underground, allowing threat actor groups to build off of one another and &#8220;leapfrog&#8221; their way forward at a dizzying pace. Now, there is a clear opportunity for cybercriminals of every level of sophistication to buy instead of build their arsenal for attack.<\/p>\n<p><strong>Criminals Go Leapfrogging<\/strong><br \/>A business phenomenon known as leapfrogging has advanced rapidly in the cybercriminal underground over the past decade. Leapfrogging refers to the process of bypassing the standard, step-by-step path of development, whereby a nation, an enterprise, or individual takes advantage of existing opportunities and innovations to skip ahead, accelerating development to jump straight to a leading position.&nbsp;<\/p>\n<p>In the cybercriminal underground, threat actors have access to a multitude of leapfrog enablers, able to employ the tools and services developed by their more experienced counterparts to deploy complex attacks that previously had been possible only for those who had followed the step-by-step evolutionary practice of building cyber expertise. <\/p>\n<p>New offerings within the illicit underground economy of the <a href=\"https:\/\/www.darkreading.com\/risk\/demystifying-the-dark-web-what-you-need-to-know\" target=\"_blank\" rel=\"noopener\">Dark Web<\/a> have allowed threat actors to wholly outsource their tools for attack, with prebuilt packages of scripts and tools facilitating anything from distributed denial-of-service (DDoS) attacks to common vulnerability exploitation. To capitalize on this booming new underground industry, many malware authors have moved to profit on their expertise, providing their skills &#8220;as-a-service.&#8221; This allows their customers to cherry-pick targets while bypassing the tiresome and complicated process of developing sophisticated malware or deploying and maintaining servers to control the malware\u2019s operations during the attack. <\/p>\n<p><strong>New Services<br \/><\/strong>The demand for quick wins and easy profits has spurred more actors to offer new kinds of services in various pricing strategies. One of the more popular services today is offered by initial access brokers (IABs). IABs sell access to thousands of compromised endpoints on a daily basis, allowing cybercriminals to buy their first way into the networks of almost every enterprise and vendor out there.&nbsp;<\/p>\n<p>For as little as $10 a piece, threat actors can purchase access and gain a steady foothold in their targets&#8217; systems, attaining a beachhead into highly secured organizations without having to bother with the complex, drawn-out&nbsp;process of gaining initial access on their own. By outsourcing access, attackers of all levels of sophistication can leapfrog several steps, jumping yet another step closer to the level of an APT.<\/p>\n<p>As cyber capabilities proliferate, trickling from APTs to less <a href=\"https:\/\/www.darkreading.com\/endpoint\/1000-attacks-sidewinder-apt-sheds-skin\" target=\"_blank\" rel=\"noopener\">advanced threat groups<\/a>, there are tens of thousands of actors that may be simply one click away from purchasing the advanced capabilities that would allow them to leapfrog to quasi-APT status. <\/p>\n<p>The question is no longer how relevant and actionable your threat intelligence is; it\u2019s how comprehensive and scalable it can be. Simply put, can your cybersecurity team continuously track millions of cybercriminal actors every day, and deliver the critical insights you need to block threats in real time?<\/p>\n<p>Read More <a href=\"https:\/\/www.darkreading.com\/attacks-breaches\/how-threat-actors-are-one-click-away-from-becoming-quasi-apts\">HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>As demonstrated in Ukraine and elsewhere, the battlefield for today&#8217;s warriors extends to the virtual realm with cyber warfare.Read More <a href=\"https:\/\/www.darkreading.com\/attacks-breaches\/how-threat-actors-are-one-click-away-from-becoming-quasi-apts\">HERE<\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[151],"tags":[],"class_list":["post-46693","post","type-post","status-publish","format-standard","hentry","category-darkreading-ti"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v26.8 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>How Threat Actors Are a Click Away From Becoming Quasi-APTs 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/how-threat-actors-are-a-click-away-from-becoming-quasi-apts\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"How Threat Actors Are a Click Away From Becoming Quasi-APTs 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/how-threat-actors-are-a-click-away-from-becoming-quasi-apts\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2022-05-18T14:00:00+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/eu-images.contentstack.com\/v3\/assets\/blt66983808af36a8ef\/bltf52a853fdf6ebd2a\/62840ef2310f0577232428ab\/APT_Panther_Media_GmbH_Alamy.jpg\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.threatshub.org\/blog\/how-threat-actors-are-a-click-away-from-becoming-quasi-apts\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.threatshub.org\/blog\/how-threat-actors-are-a-click-away-from-becoming-quasi-apts\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"How Threat Actors Are a Click Away From Becoming Quasi-APTs\",\"datePublished\":\"2022-05-18T14:00:00+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.threatshub.org\/blog\/how-threat-actors-are-a-click-away-from-becoming-quasi-apts\/\"},\"wordCount\":852,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\/\/www.threatshub.org\/blog\/#organization\"},\"image\":{\"@id\":\"https:\/\/www.threatshub.org\/blog\/how-threat-actors-are-a-click-away-from-becoming-quasi-apts\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/eu-images.contentstack.com\/v3\/assets\/blt66983808af36a8ef\/bltf52a853fdf6ebd2a\/62840ef2310f0577232428ab\/APT_Panther_Media_GmbH_Alamy.jpg\",\"articleSection\":[\"DarkReading |TI\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/www.threatshub.org\/blog\/how-threat-actors-are-a-click-away-from-becoming-quasi-apts\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.threatshub.org\/blog\/how-threat-actors-are-a-click-away-from-becoming-quasi-apts\/\",\"url\":\"https:\/\/www.threatshub.org\/blog\/how-threat-actors-are-a-click-away-from-becoming-quasi-apts\/\",\"name\":\"How Threat Actors Are a Click Away From Becoming Quasi-APTs 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\/\/www.threatshub.org\/blog\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.threatshub.org\/blog\/how-threat-actors-are-a-click-away-from-becoming-quasi-apts\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.threatshub.org\/blog\/how-threat-actors-are-a-click-away-from-becoming-quasi-apts\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/eu-images.contentstack.com\/v3\/assets\/blt66983808af36a8ef\/bltf52a853fdf6ebd2a\/62840ef2310f0577232428ab\/APT_Panther_Media_GmbH_Alamy.jpg\",\"datePublished\":\"2022-05-18T14:00:00+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\/\/www.threatshub.org\/blog\/how-threat-actors-are-a-click-away-from-becoming-quasi-apts\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.threatshub.org\/blog\/how-threat-actors-are-a-click-away-from-becoming-quasi-apts\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.threatshub.org\/blog\/how-threat-actors-are-a-click-away-from-becoming-quasi-apts\/#primaryimage\",\"url\":\"https:\/\/eu-images.contentstack.com\/v3\/assets\/blt66983808af36a8ef\/bltf52a853fdf6ebd2a\/62840ef2310f0577232428ab\/APT_Panther_Media_GmbH_Alamy.jpg\",\"contentUrl\":\"https:\/\/eu-images.contentstack.com\/v3\/assets\/blt66983808af36a8ef\/bltf52a853fdf6ebd2a\/62840ef2310f0577232428ab\/APT_Panther_Media_GmbH_Alamy.jpg\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.threatshub.org\/blog\/how-threat-actors-are-a-click-away-from-becoming-quasi-apts\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.threatshub.org\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"How Threat Actors Are a Click Away From Becoming Quasi-APTs\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.threatshub.org\/blog\/#website\",\"url\":\"https:\/\/www.threatshub.org\/blog\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\/\/www.threatshub.org\/blog\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.threatshub.org\/blog\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\/\/www.threatshub.org\/blog\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/x.com\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"How Threat Actors Are a Click Away From Becoming Quasi-APTs 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/how-threat-actors-are-a-click-away-from-becoming-quasi-apts\/","og_locale":"en_US","og_type":"article","og_title":"How Threat Actors Are a Click Away From Becoming Quasi-APTs 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/how-threat-actors-are-a-click-away-from-becoming-quasi-apts\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2022-05-18T14:00:00+00:00","og_image":[{"url":"https:\/\/eu-images.contentstack.com\/v3\/assets\/blt66983808af36a8ef\/bltf52a853fdf6ebd2a\/62840ef2310f0577232428ab\/APT_Panther_Media_GmbH_Alamy.jpg","type":"","width":"","height":""}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/how-threat-actors-are-a-click-away-from-becoming-quasi-apts\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/how-threat-actors-are-a-click-away-from-becoming-quasi-apts\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"How Threat Actors Are a Click Away From Becoming Quasi-APTs","datePublished":"2022-05-18T14:00:00+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/how-threat-actors-are-a-click-away-from-becoming-quasi-apts\/"},"wordCount":852,"commentCount":0,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/how-threat-actors-are-a-click-away-from-becoming-quasi-apts\/#primaryimage"},"thumbnailUrl":"https:\/\/eu-images.contentstack.com\/v3\/assets\/blt66983808af36a8ef\/bltf52a853fdf6ebd2a\/62840ef2310f0577232428ab\/APT_Panther_Media_GmbH_Alamy.jpg","articleSection":["DarkReading |TI"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.threatshub.org\/blog\/how-threat-actors-are-a-click-away-from-becoming-quasi-apts\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/how-threat-actors-are-a-click-away-from-becoming-quasi-apts\/","url":"https:\/\/www.threatshub.org\/blog\/how-threat-actors-are-a-click-away-from-becoming-quasi-apts\/","name":"How Threat Actors Are a Click Away From Becoming Quasi-APTs 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/how-threat-actors-are-a-click-away-from-becoming-quasi-apts\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/how-threat-actors-are-a-click-away-from-becoming-quasi-apts\/#primaryimage"},"thumbnailUrl":"https:\/\/eu-images.contentstack.com\/v3\/assets\/blt66983808af36a8ef\/bltf52a853fdf6ebd2a\/62840ef2310f0577232428ab\/APT_Panther_Media_GmbH_Alamy.jpg","datePublished":"2022-05-18T14:00:00+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/how-threat-actors-are-a-click-away-from-becoming-quasi-apts\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/how-threat-actors-are-a-click-away-from-becoming-quasi-apts\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/how-threat-actors-are-a-click-away-from-becoming-quasi-apts\/#primaryimage","url":"https:\/\/eu-images.contentstack.com\/v3\/assets\/blt66983808af36a8ef\/bltf52a853fdf6ebd2a\/62840ef2310f0577232428ab\/APT_Panther_Media_GmbH_Alamy.jpg","contentUrl":"https:\/\/eu-images.contentstack.com\/v3\/assets\/blt66983808af36a8ef\/bltf52a853fdf6ebd2a\/62840ef2310f0577232428ab\/APT_Panther_Media_GmbH_Alamy.jpg"},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/how-threat-actors-are-a-click-away-from-becoming-quasi-apts\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"How Threat Actors Are a Click Away From Becoming Quasi-APTs"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/46693","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=46693"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/46693\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=46693"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=46693"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=46693"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}