{"id":47752,"date":"2022-07-29T10:53:00","date_gmt":"2022-07-29T10:53:00","guid":{"rendered":"http:\/\/b24871ed-694a-48de-8feb-fb6a99e22cfb"},"modified":"2022-07-29T10:53:00","modified_gmt":"2022-07-29T10:53:00","slug":"microsoft-has-blocked-hackers-favourite-trick-so-now-they-are-looking-for-a-new-route-of-attack","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/microsoft-has-blocked-hackers-favourite-trick-so-now-they-are-looking-for-a-new-route-of-attack\/","title":{"rendered":"Microsoft has blocked hackers’ favourite trick. So now they are looking for a new route of attack"},"content":{"rendered":"
\n
\n
\"getty-mysterious-hands-on-a-keyboard.jpg\"<\/picture><\/div>\n

<\/div>\n

Image: Getty<\/span><\/figcaption><\/figure>\n

There’s good and bad news about Microsoft’s recent crackdowns on untrusted Office macros. The good is that it has curtailed the use of Office macros in emailed attachments or links. The bad is that attackers have just changed tactics, ramping up their use of .LNK Windows shortcut links.  <\/p>\n

According to security firm Proofpoint<\/a>, ever since Microsoft clamped down on Office macros, attackers have switched to using container files such as ISO and RAR attachments and Windows Shortcut (LNK) files. <\/p>\n

A key turning point in macro usage was in February, when Microsoft announced it would roll out a default block on internet-sourced Visual Basics for Applications (VBA) macros<\/a> from April. That rollout plan was delayed until this week<\/a>.<\/p>\n

“The most notable shift in campaign data is the emergence of LNK files; at least 10 tracked threat actors have begun using LNK files since February 2022. The number of campaigns containing LNK files increased 1,675% since October 2021,” Proofpoint notes<\/a>.<\/p>\n

SEE; What, exactly, is cybersecurity? And why does it matter?<\/a><\/strong><\/p>\n

Email attachments with malicious macros decreased approximately 66% between October 2021 and June 2022, according to Proofpoint. <\/p>\n

The uptake of .LNK files by threat actors was occurring before February because Microsoft’s macro crackdowns started years ago. <\/p>\n

Abusing Office macros \u2014 a script in Word or Excel files that automate repetitive tasks like monthly accounting \u2014 is a useful technique for attackers since it’s not a flaw that can be patched and instead relies on tricking employees into enabling a capability most people don’t need. <\/p>\n

Microsoft’s latest crackdown, which rolled out this week, was to make Office apps, by default, block VBA macros in all attachments or links in email received from the internet<\/a>. This cut out the need for admins to configure domains to block untrusted VBA macros and makes it more difficult for users to enable macros after trickery<\/a>. <\/p>\n

Since 2016<\/a>, Microsoft has gradually imposed more restrictions on running macros. Back then it said 98% of Office-targeted threats use macros. In January, it also disabled Excel 4.0 macros (XLM) macros by default<\/a>. XLM was added to Excel in 1992<\/a> but is still used even though VBA superseded it in 1993. <\/p>\n

In 2018, Microsoft gave antivirus vendors a way to integrate with Office to inspect files for malicious VBA macros. It added XLM macros to that antivirus interface in March<\/a> because attackers had started using XLM in response to its prior VBA macro crackdown.   <\/p>\n

“While more rudimentary than VBA, XLM is powerful enough to provide interoperability with the operating system, and many organizations and users continue to use its functionality for legitimate purposes. Cybercriminals know this, and they have been abusing XLM macros, increasingly more frequently, to call Win32 APIs and run shell commands,” Microsoft explained at the time. <\/p>\n

XLM, also referred to as XL4, was adopted BY professional malware gangs behind the multipurpose Emotet malware. Again, XLM’s use correlated with the timing of Microsoft’s move to block these macros and let antivirus vendors inspect Office files for these scripts. <\/p>\n

“XL4 macro use spiked in March 2022. This is likely a result of TA542, the actor delivering the Emotet malware, conducting more campaigns with higher volumes of messages than preceding months. Typically, TA542 uses Microsoft Excel or Word documents containing VBA or XL4 macros. Emotet activity subsequently dropped off in April and it began using additional delivery methods including Excel Add In (XLL) files and zipped LNK attachments in subsequent campaigns,” Proofpoint notes.   <\/p>\n

\n
\n
\"screen-shot-2022-07-26-at-11-20-30-am.png\"<\/picture><\/div>\n

<\/div>\n

Source: Proofpoint<\/span><\/figcaption><\/figure>\n
\n

More Microsoft <\/h3>\n<\/p><\/div>\n

READ MORE HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

Microsoft’s default block on Office macro malware is working, which means hackers need to find a new way to carry out their attacks.
\nREAD MORE HERE…<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[62],"tags":[],"class_list":["post-47752","post","type-post","status-publish","format-standard","hentry","category-zdnet-security"],"yoast_head":"\nMicrosoft has blocked hackers' favourite trick. So now they are looking for a new route of attack 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/microsoft-has-blocked-hackers-favourite-trick-so-now-they-are-looking-for-a-new-route-of-attack\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Microsoft has blocked hackers' favourite trick. So now they are looking for a new route of attack 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/microsoft-has-blocked-hackers-favourite-trick-so-now-they-are-looking-for-a-new-route-of-attack\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2022-07-29T10:53:00+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.zdnet.com\/article\/microsoft-has-blocked-hackers-favourite-trick-so-now-they-are-looking-for-a-new-route-of-attack\/\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/microsoft-has-blocked-hackers-favourite-trick-so-now-they-are-looking-for-a-new-route-of-attack\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/microsoft-has-blocked-hackers-favourite-trick-so-now-they-are-looking-for-a-new-route-of-attack\\\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"Microsoft has blocked hackers’ favourite trick. So now they are looking for a new route of attack\",\"datePublished\":\"2022-07-29T10:53:00+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/microsoft-has-blocked-hackers-favourite-trick-so-now-they-are-looking-for-a-new-route-of-attack\\\/\"},\"wordCount\":606,\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/microsoft-has-blocked-hackers-favourite-trick-so-now-they-are-looking-for-a-new-route-of-attack\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.zdnet.com\\\/article\\\/microsoft-has-blocked-hackers-favourite-trick-so-now-they-are-looking-for-a-new-route-of-attack\\\/\",\"articleSection\":[\"ZDNet | Security\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/microsoft-has-blocked-hackers-favourite-trick-so-now-they-are-looking-for-a-new-route-of-attack\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/microsoft-has-blocked-hackers-favourite-trick-so-now-they-are-looking-for-a-new-route-of-attack\\\/\",\"name\":\"Microsoft has blocked hackers' favourite trick. So now they are looking for a new route of attack 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/microsoft-has-blocked-hackers-favourite-trick-so-now-they-are-looking-for-a-new-route-of-attack\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/microsoft-has-blocked-hackers-favourite-trick-so-now-they-are-looking-for-a-new-route-of-attack\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.zdnet.com\\\/article\\\/microsoft-has-blocked-hackers-favourite-trick-so-now-they-are-looking-for-a-new-route-of-attack\\\/\",\"datePublished\":\"2022-07-29T10:53:00+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/microsoft-has-blocked-hackers-favourite-trick-so-now-they-are-looking-for-a-new-route-of-attack\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/microsoft-has-blocked-hackers-favourite-trick-so-now-they-are-looking-for-a-new-route-of-attack\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/microsoft-has-blocked-hackers-favourite-trick-so-now-they-are-looking-for-a-new-route-of-attack\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.zdnet.com\\\/article\\\/microsoft-has-blocked-hackers-favourite-trick-so-now-they-are-looking-for-a-new-route-of-attack\\\/\",\"contentUrl\":\"https:\\\/\\\/www.zdnet.com\\\/article\\\/microsoft-has-blocked-hackers-favourite-trick-so-now-they-are-looking-for-a-new-route-of-attack\\\/\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/microsoft-has-blocked-hackers-favourite-trick-so-now-they-are-looking-for-a-new-route-of-attack\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Microsoft has blocked hackers’ favourite trick. So now they are looking for a new route of attack\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Microsoft has blocked hackers' favourite trick. So now they are looking for a new route of attack 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/microsoft-has-blocked-hackers-favourite-trick-so-now-they-are-looking-for-a-new-route-of-attack\/","og_locale":"en_US","og_type":"article","og_title":"Microsoft has blocked hackers' favourite trick. So now they are looking for a new route of attack 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/microsoft-has-blocked-hackers-favourite-trick-so-now-they-are-looking-for-a-new-route-of-attack\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2022-07-29T10:53:00+00:00","og_image":[{"url":"https:\/\/www.zdnet.com\/article\/microsoft-has-blocked-hackers-favourite-trick-so-now-they-are-looking-for-a-new-route-of-attack\/","type":"","width":"","height":""}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/microsoft-has-blocked-hackers-favourite-trick-so-now-they-are-looking-for-a-new-route-of-attack\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/microsoft-has-blocked-hackers-favourite-trick-so-now-they-are-looking-for-a-new-route-of-attack\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"Microsoft has blocked hackers’ favourite trick. So now they are looking for a new route of attack","datePublished":"2022-07-29T10:53:00+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/microsoft-has-blocked-hackers-favourite-trick-so-now-they-are-looking-for-a-new-route-of-attack\/"},"wordCount":606,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/microsoft-has-blocked-hackers-favourite-trick-so-now-they-are-looking-for-a-new-route-of-attack\/#primaryimage"},"thumbnailUrl":"https:\/\/www.zdnet.com\/article\/microsoft-has-blocked-hackers-favourite-trick-so-now-they-are-looking-for-a-new-route-of-attack\/","articleSection":["ZDNet | Security"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/microsoft-has-blocked-hackers-favourite-trick-so-now-they-are-looking-for-a-new-route-of-attack\/","url":"https:\/\/www.threatshub.org\/blog\/microsoft-has-blocked-hackers-favourite-trick-so-now-they-are-looking-for-a-new-route-of-attack\/","name":"Microsoft has blocked hackers' favourite trick. So now they are looking for a new route of attack 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/microsoft-has-blocked-hackers-favourite-trick-so-now-they-are-looking-for-a-new-route-of-attack\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/microsoft-has-blocked-hackers-favourite-trick-so-now-they-are-looking-for-a-new-route-of-attack\/#primaryimage"},"thumbnailUrl":"https:\/\/www.zdnet.com\/article\/microsoft-has-blocked-hackers-favourite-trick-so-now-they-are-looking-for-a-new-route-of-attack\/","datePublished":"2022-07-29T10:53:00+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/microsoft-has-blocked-hackers-favourite-trick-so-now-they-are-looking-for-a-new-route-of-attack\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/microsoft-has-blocked-hackers-favourite-trick-so-now-they-are-looking-for-a-new-route-of-attack\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/microsoft-has-blocked-hackers-favourite-trick-so-now-they-are-looking-for-a-new-route-of-attack\/#primaryimage","url":"https:\/\/www.zdnet.com\/article\/microsoft-has-blocked-hackers-favourite-trick-so-now-they-are-looking-for-a-new-route-of-attack\/","contentUrl":"https:\/\/www.zdnet.com\/article\/microsoft-has-blocked-hackers-favourite-trick-so-now-they-are-looking-for-a-new-route-of-attack\/"},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/microsoft-has-blocked-hackers-favourite-trick-so-now-they-are-looking-for-a-new-route-of-attack\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"Microsoft has blocked hackers’ favourite trick. So now they are looking for a new route of attack"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/47752","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=47752"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/47752\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=47752"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=47752"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=47752"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}