{"id":49251,"date":"2022-11-11T00:00:00","date_gmt":"2022-11-11T00:00:00","guid":{"rendered":"urn:uuid:77ff7abd-cb66-b411-0c10-6b0996f61562"},"modified":"2022-11-11T00:00:00","modified_gmt":"2022-11-11T00:00:00","slug":"cve-2019-8561-a-hard-to-banish-packagekit-framework-vulnerability-in-macos","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/cve-2019-8561-a-hard-to-banish-packagekit-framework-vulnerability-in-macos\/","title":{"rendered":"CVE-2019-8561: A Hard-to-Banish PackageKit Framework Vulnerability in macOS"},"content":{"rendered":"

<\/p>\n

<\/div>\n

At line 28, if the offset value of the payload subpath inside the PKG file is not equal to zero, the \u201c-[PKLeopardPackage payloadExtractorWithDestination:externalRoot:error:]\u201d function will call the \u201c-[PKPayloadCopier initWithArchivePath:offset:destination:]\u201d function. Similar to the second method, there is a \u201ctriple fetch\u201d issue.<\/p>\n

If the offset value is equal to zero, it will extract the payload from a special external root path, which seems to be unrestricted and can be controlled by an attacker. This means that an attacker could put malicious payloads in the external root path. However, as of writing, we are not able to find an Apple-signed PKG file with an external root path.<\/p>\n

Exploit<\/b><\/p>\n

Compared to the older exploitation, the time window for this race condition issue is smaller. We needed to restore the PKG file to the original Apple-signed one after the extraction to pass any possible verifications later. And there is one more challenge that needs to be overcome: The offset value of the scripts or payload subpath component inside the newly crafted PKG file must be equal to that of the original one.<\/p>\n

To exploit the issue again, we first prepared a crafted PKG file that contains our payload. After expanding the original Apple-signed PKG file, we cleaned up the old scripts and put our payload into the post-install script.<\/p>\n

pkgutil –expand \/Volumes\/Pro\\ Video\\ Formats\/ProVideoFormats.pkg \/tmp\/ProVideoFormats
rm -rf \/tmp\/ProVideoFormats\/MXFPlugIns.pkg\/Scripts\/*
echo ‘#!\/bin\/bash’ > \/tmp\/ProVideoFormats\/MXFPlugIns.pkg\/Scripts\/postinstall
echo ‘touch \/Library\/Apple\/sip_bypass’ >> \/tmp\/ProVideoFormats\/MXFPlugIns.pkg\/Scripts\/postinstall
chmod +x \/tmp\/ProVideoFormats\/MXFPlugIns.pkg\/Scripts\/postinstall<\/span><\/p>\n

Next, to address the offset value of the scripts subpath component challenge, we wrote a Python script to build the new PKG file in a dead loop until the offset value met the demand.<\/p>\n

while True:
os.system(‘pkgutil –flatten \/tmp\/ProVideoFormats \/tmp\/ProVideoFormats.fake.pkg’)
f=open(‘\/tmp\/ProVideoFormats.fake.pkg’, ‘rb’) 
f.seek(scriptsOffsetInPkg) # the offset value from the original PKG
if f.read(4)==’\\x1f\\x8b\\x08\\x00′: break
f.close()<\/span><\/p>\n

Once the crafted PKG file was ready, it was time to exploit the vulnerability via the following steps:<\/p>\n

1.        An Apple-signed PKG file with post-install scripts is installed.<\/p>\n

2.        The system_installd<\/i> daemon service will handle the install request.<\/p>\n

3.        In the function \u201c-[PKLeopardPackage scriptsExtractorWithDestination:error:]\u201d, the PKG file will be replaced with a crafted one after line 8 and before line 16.<\/p>\n

4.        After the service calls the API \u201cBOMCopierCopyWithOptions\u201d to extract the malicious scripts inside our crafted PKG file, the PKG file will be restored to the original one.<\/p>\n

5.        The extracted malicious scripts will then be spawned by the system_installd<\/i> in a SIP-Bypass context with root privilege.<\/p>\n

Apple\u2019s new patch on macOS Ventura<\/b><\/p>\n

Apple patched the vulnerability again in macOS Ventura via the following steps:<\/p>\n

First, the new patch code gets the expected checksum property of the PKG file\u2019s subpath via the trusted XAR pointer, which is returned by the safe API \u201cxar_open_digest_verify\u201d.<\/p>\n

Read More HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

This blog entry details our investigation of CVE-2019-8561, a vulnerability that exists in the macOS PackageKit framework, a component used to install software installer packages (PKG files). Read More HERE…<\/p>\n","protected":false},"author":2,"featured_media":49252,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[61],"tags":[9510,9508,9555,9509],"class_list":["post-49251","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-trendmicro","tag-trend-micro-research-articles-news-reports","tag-trend-micro-research-endpoints","tag-trend-micro-research-exploitsvulnerabilities","tag-trend-micro-research-research"],"yoast_head":"\nCVE-2019-8561: A Hard-to-Banish PackageKit Framework Vulnerability in macOS 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/cve-2019-8561-a-hard-to-banish-packagekit-framework-vulnerability-in-macos\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"CVE-2019-8561: A Hard-to-Banish PackageKit Framework Vulnerability in macOS 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/cve-2019-8561-a-hard-to-banish-packagekit-framework-vulnerability-in-macos\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2022-11-11T00:00:00+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.trendmicro.com\/content\/dam\/trendmicro\/global\/en\/research\/thumbnails\/22\/CVE-2019-8561-A%20Hard-to-Banish%20PackageKit%20Framework%20Vulnerability%20in%20macOS.jpg\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.threatshub.org\/blog\/cve-2019-8561-a-hard-to-banish-packagekit-framework-vulnerability-in-macos\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.threatshub.org\/blog\/cve-2019-8561-a-hard-to-banish-packagekit-framework-vulnerability-in-macos\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"CVE-2019-8561: A Hard-to-Banish PackageKit Framework Vulnerability in macOS\",\"datePublished\":\"2022-11-11T00:00:00+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.threatshub.org\/blog\/cve-2019-8561-a-hard-to-banish-packagekit-framework-vulnerability-in-macos\/\"},\"wordCount\":543,\"publisher\":{\"@id\":\"https:\/\/www.threatshub.org\/blog\/#organization\"},\"image\":{\"@id\":\"https:\/\/www.threatshub.org\/blog\/cve-2019-8561-a-hard-to-banish-packagekit-framework-vulnerability-in-macos\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2022\/11\/cve-2019-8561-a-hard-to-banish-packagekit-framework-vulnerability-in-macos.jpg\",\"keywords\":[\"Trend Micro Research : Articles, News, Reports\",\"Trend Micro Research : Endpoints\",\"Trend Micro Research : Exploits&Vulnerabilities\",\"Trend Micro Research : Research\"],\"articleSection\":[\"TrendMicro\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.threatshub.org\/blog\/cve-2019-8561-a-hard-to-banish-packagekit-framework-vulnerability-in-macos\/\",\"url\":\"https:\/\/www.threatshub.org\/blog\/cve-2019-8561-a-hard-to-banish-packagekit-framework-vulnerability-in-macos\/\",\"name\":\"CVE-2019-8561: A Hard-to-Banish PackageKit Framework Vulnerability in macOS 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\/\/www.threatshub.org\/blog\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.threatshub.org\/blog\/cve-2019-8561-a-hard-to-banish-packagekit-framework-vulnerability-in-macos\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.threatshub.org\/blog\/cve-2019-8561-a-hard-to-banish-packagekit-framework-vulnerability-in-macos\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2022\/11\/cve-2019-8561-a-hard-to-banish-packagekit-framework-vulnerability-in-macos.jpg\",\"datePublished\":\"2022-11-11T00:00:00+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\/\/www.threatshub.org\/blog\/cve-2019-8561-a-hard-to-banish-packagekit-framework-vulnerability-in-macos\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.threatshub.org\/blog\/cve-2019-8561-a-hard-to-banish-packagekit-framework-vulnerability-in-macos\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.threatshub.org\/blog\/cve-2019-8561-a-hard-to-banish-packagekit-framework-vulnerability-in-macos\/#primaryimage\",\"url\":\"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2022\/11\/cve-2019-8561-a-hard-to-banish-packagekit-framework-vulnerability-in-macos.jpg\",\"contentUrl\":\"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2022\/11\/cve-2019-8561-a-hard-to-banish-packagekit-framework-vulnerability-in-macos.jpg\",\"width\":641,\"height\":428},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.threatshub.org\/blog\/cve-2019-8561-a-hard-to-banish-packagekit-framework-vulnerability-in-macos\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.threatshub.org\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Trend Micro Research : Articles, News, Reports\",\"item\":\"https:\/\/www.threatshub.org\/blog\/tag\/trend-micro-research-articles-news-reports\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"CVE-2019-8561: A Hard-to-Banish PackageKit Framework Vulnerability in macOS\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.threatshub.org\/blog\/#website\",\"url\":\"https:\/\/www.threatshub.org\/blog\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\/\/www.threatshub.org\/blog\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.threatshub.org\/blog\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\/\/www.threatshub.org\/blog\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/x.com\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"CVE-2019-8561: A Hard-to-Banish PackageKit Framework Vulnerability in macOS 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/cve-2019-8561-a-hard-to-banish-packagekit-framework-vulnerability-in-macos\/","og_locale":"en_US","og_type":"article","og_title":"CVE-2019-8561: A Hard-to-Banish PackageKit Framework Vulnerability in macOS 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/cve-2019-8561-a-hard-to-banish-packagekit-framework-vulnerability-in-macos\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2022-11-11T00:00:00+00:00","og_image":[{"url":"https:\/\/www.trendmicro.com\/content\/dam\/trendmicro\/global\/en\/research\/thumbnails\/22\/CVE-2019-8561-A%20Hard-to-Banish%20PackageKit%20Framework%20Vulnerability%20in%20macOS.jpg","type":"","width":"","height":""}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/cve-2019-8561-a-hard-to-banish-packagekit-framework-vulnerability-in-macos\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/cve-2019-8561-a-hard-to-banish-packagekit-framework-vulnerability-in-macos\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"CVE-2019-8561: A Hard-to-Banish PackageKit Framework Vulnerability in macOS","datePublished":"2022-11-11T00:00:00+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/cve-2019-8561-a-hard-to-banish-packagekit-framework-vulnerability-in-macos\/"},"wordCount":543,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/cve-2019-8561-a-hard-to-banish-packagekit-framework-vulnerability-in-macos\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2022\/11\/cve-2019-8561-a-hard-to-banish-packagekit-framework-vulnerability-in-macos.jpg","keywords":["Trend Micro Research : Articles, News, Reports","Trend Micro Research : Endpoints","Trend Micro Research : Exploits&Vulnerabilities","Trend Micro Research : Research"],"articleSection":["TrendMicro"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/cve-2019-8561-a-hard-to-banish-packagekit-framework-vulnerability-in-macos\/","url":"https:\/\/www.threatshub.org\/blog\/cve-2019-8561-a-hard-to-banish-packagekit-framework-vulnerability-in-macos\/","name":"CVE-2019-8561: A Hard-to-Banish PackageKit Framework Vulnerability in macOS 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/cve-2019-8561-a-hard-to-banish-packagekit-framework-vulnerability-in-macos\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/cve-2019-8561-a-hard-to-banish-packagekit-framework-vulnerability-in-macos\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2022\/11\/cve-2019-8561-a-hard-to-banish-packagekit-framework-vulnerability-in-macos.jpg","datePublished":"2022-11-11T00:00:00+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/cve-2019-8561-a-hard-to-banish-packagekit-framework-vulnerability-in-macos\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/cve-2019-8561-a-hard-to-banish-packagekit-framework-vulnerability-in-macos\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/cve-2019-8561-a-hard-to-banish-packagekit-framework-vulnerability-in-macos\/#primaryimage","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2022\/11\/cve-2019-8561-a-hard-to-banish-packagekit-framework-vulnerability-in-macos.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2022\/11\/cve-2019-8561-a-hard-to-banish-packagekit-framework-vulnerability-in-macos.jpg","width":641,"height":428},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/cve-2019-8561-a-hard-to-banish-packagekit-framework-vulnerability-in-macos\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"Trend Micro Research : Articles, News, Reports","item":"https:\/\/www.threatshub.org\/blog\/tag\/trend-micro-research-articles-news-reports\/"},{"@type":"ListItem","position":3,"name":"CVE-2019-8561: A Hard-to-Banish PackageKit Framework Vulnerability in macOS"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/49251","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=49251"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/49251\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media\/49252"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=49251"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=49251"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=49251"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}