{"id":50713,"date":"2023-02-23T19:30:07","date_gmt":"2023-02-23T19:30:07","guid":{"rendered":"https:\/\/www.darkreading.com\/analytics\/unanswered-questions-cloud-recent-targeting-asian-research-org"},"modified":"2023-02-23T19:30:07","modified_gmt":"2023-02-23T19:30:07","slug":"unanswered-questions-cloud-the-recent-targeting-of-an-asian-research-org","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/unanswered-questions-cloud-the-recent-targeting-of-an-asian-research-org\/","title":{"rendered":"Unanswered Questions Cloud the Recent Targeting of an Asian Research Org"},"content":{"rendered":"<div><img decoding=\"async\" src=\"https:\/\/eu-images.contentstack.com\/v3\/assets\/blt66983808af36a8ef\/bltf0f2e30ede619176\/63dc2b594c4b0210bc379a94\/malware_Yuttanasshutterstock.jpg\" class=\"ff-og-image-inserted\"><\/div>\n<p>On Feb. 22, Symantec revealed evidence of a previously undocumented threat actor it&#8217;s calling &#8220;Clasiopa.&#8221; Clasiopa has been observed deploying a unique malware backdoor called &#8220;Atharvan&#8221; in its campaign against a materials manufacturer based in Asia.<\/p>\n<p>&#8220;From what we can see, the main motivation of the attack was spying or information theft,&#8221; <span>Dick O&#8217;Brien, principal intelligence analyst at the Symantec Threat Hunter Team, tells Dark Reading. <\/span>Symantec declined to elaborate on the nature of the victim, the files, or whether the attackers were successful.<\/p>\n<h2 class=\"regular-text\">Clasiopa&#8217;s Stealth Tactics<\/h2>\n<p>Clasiopa&#8217;s initial intrusion vector is not certain, &#8220;although,&#8221; the researchers noted, &#8220;there is some evidence to suggest that the attackers gain access through brute-force attacks on public-facing servers.&#8221;<\/p>\n<p>The report highlights a few hallmarks of the attack, including checking the IP address of target computers, using &#8220;multiple backdoors to build lists of file names and exfiltrate them,&#8221; clearing multiple event logs on the target system, and running a vaguely named task \u2014 &#8220;network service&#8221; \u2014 to list file names.<\/p>\n<p>Two commercial programs also made their way into the maelstrom: the Agile File Distribution Management system, from developers Jiangsu Agile Technology in China, and Domino, from HCL software (though the latter may have been included coincidentally).<\/p>\n<p>Altogether, these methods \u2014 the backdoors, the erased logs, the commercial software \u2014 begin to tell a story. &#8220;They&#8217;re certainly an attempt at stealthy tactics,&#8221; O&#8217;Brien says. &#8220;These kinds of tactics are by no means unique and a lot of similar threat actors will do something similar, with varying levels of success depending on their skills and resources.&#8221;<\/p>\n<p>&#8220;In this case,&#8221; he adds, &#8220;they still left enough evidence behind to piece together much of what they&#8217;d done.&#8221;<\/p>\n<p>That said, some of the evidence the group left behind may have been intentional, meant to point researchers in a specific attribution direction.<\/p>\n<h2 class=\"regular-text\">Who Is Clasiopa?<\/h2>\n<p>The clues to learning about Clasiopa may lie in its unique malware, Atharvan \u2014 &#8220;a classic backdoor,&#8221; as O&#8217;Brien says. &#8220;It allows the attackers to maintain an open communication channel with the infected computer, install additional tools, and send back information to the attackers.&#8221;<\/p>\n<p>Function aside, its name may be its most notable feature. The name derives from &#8220;SAPTARISHI ATHARVAN-101,&#8221; a <a href=\"https:\/\/www.darkreading.com\/threat-intelligence\/sneaky-stealer-woos-remote-workers-fake-zoom-downloads\" target=\"_blank\" rel=\"noopener\">mutual exclusion object<\/a> (&#8220;mutex&#8221;) the malware creates after infecting a target machine, to ensure multiple copies of itself aren&#8217;t running at once. &#8220;Saptarishi,&#8221; in ancient Indian astronomy, is the word for the arrangement of stars in the Big Dipper. Atharvan is the name of a mythic Hindu sage.<\/p>\n<p>And there was another breadcrumb indicating Indian origin. One of the passwords Clasiopa used for a zip archive was iloveindea1998^_^.<\/p>\n<p>However, these clues are actually <em>so<\/em> obvious that they invite suspicion. &#8220;While these details could suggest that the group is based in India,&#8221; the researchers hypothesized, &#8220;it is also quite likely that the information was planted as <a href=\"https:\/\/www.darkreading.com\/attacks-breaches\/olympic-destroyer-s-false-flag-changes-the-game\" target=\"_blank\" rel=\"noopener\">false flags<\/a>, with the password in particular seeming to be an overly obvious clue.&#8221;<\/p>\n<p>Many other details about the group remain undisclosed or unknown. This may be in part due to the stealth tactics utilized in the campaign, some subtle and some overt. For now, threat analysts should stay tuned: To learn anything more about Clasiopa, we may need to wait until it strikes again.<\/p>\n<p>Read More <a href=\"https:\/\/www.darkreading.com\/analytics\/unanswered-questions-cloud-recent-targeting-asian-research-org\">HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>A novel threat group, utilizing new malware, is out in the wild. But the who, what, where, and why are yet to be determined, and there&#8217;s evidence of a false-flag operation.Read More <a href=\"https:\/\/www.darkreading.com\/analytics\/unanswered-questions-cloud-recent-targeting-asian-research-org\">HERE<\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[151],"tags":[],"class_list":["post-50713","post","type-post","status-publish","format-standard","hentry","category-darkreading-ti"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v28.0 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Unanswered Questions Cloud the Recent Targeting of an Asian Research Org 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/unanswered-questions-cloud-the-recent-targeting-of-an-asian-research-org\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Unanswered Questions Cloud the Recent Targeting of an Asian Research Org 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/unanswered-questions-cloud-the-recent-targeting-of-an-asian-research-org\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2023-02-23T19:30:07+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/eu-images.contentstack.com\/v3\/assets\/blt66983808af36a8ef\/bltf0f2e30ede619176\/63dc2b594c4b0210bc379a94\/malware_Yuttanasshutterstock.jpg\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/unanswered-questions-cloud-the-recent-targeting-of-an-asian-research-org\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/unanswered-questions-cloud-the-recent-targeting-of-an-asian-research-org\\\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"Unanswered Questions Cloud the Recent Targeting of an Asian Research Org\",\"datePublished\":\"2023-02-23T19:30:07+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/unanswered-questions-cloud-the-recent-targeting-of-an-asian-research-org\\\/\"},\"wordCount\":553,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/unanswered-questions-cloud-the-recent-targeting-of-an-asian-research-org\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/eu-images.contentstack.com\\\/v3\\\/assets\\\/blt66983808af36a8ef\\\/bltf0f2e30ede619176\\\/63dc2b594c4b0210bc379a94\\\/malware_Yuttanasshutterstock.jpg\",\"articleSection\":[\"DarkReading |TI\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/unanswered-questions-cloud-the-recent-targeting-of-an-asian-research-org\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/unanswered-questions-cloud-the-recent-targeting-of-an-asian-research-org\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/unanswered-questions-cloud-the-recent-targeting-of-an-asian-research-org\\\/\",\"name\":\"Unanswered Questions Cloud the Recent Targeting of an Asian Research Org 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/unanswered-questions-cloud-the-recent-targeting-of-an-asian-research-org\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/unanswered-questions-cloud-the-recent-targeting-of-an-asian-research-org\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/eu-images.contentstack.com\\\/v3\\\/assets\\\/blt66983808af36a8ef\\\/bltf0f2e30ede619176\\\/63dc2b594c4b0210bc379a94\\\/malware_Yuttanasshutterstock.jpg\",\"datePublished\":\"2023-02-23T19:30:07+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/unanswered-questions-cloud-the-recent-targeting-of-an-asian-research-org\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/unanswered-questions-cloud-the-recent-targeting-of-an-asian-research-org\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/unanswered-questions-cloud-the-recent-targeting-of-an-asian-research-org\\\/#primaryimage\",\"url\":\"https:\\\/\\\/eu-images.contentstack.com\\\/v3\\\/assets\\\/blt66983808af36a8ef\\\/bltf0f2e30ede619176\\\/63dc2b594c4b0210bc379a94\\\/malware_Yuttanasshutterstock.jpg\",\"contentUrl\":\"https:\\\/\\\/eu-images.contentstack.com\\\/v3\\\/assets\\\/blt66983808af36a8ef\\\/bltf0f2e30ede619176\\\/63dc2b594c4b0210bc379a94\\\/malware_Yuttanasshutterstock.jpg\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/unanswered-questions-cloud-the-recent-targeting-of-an-asian-research-org\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Unanswered Questions Cloud the Recent Targeting of an Asian Research Org\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Unanswered Questions Cloud the Recent Targeting of an Asian Research Org 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/unanswered-questions-cloud-the-recent-targeting-of-an-asian-research-org\/","og_locale":"en_US","og_type":"article","og_title":"Unanswered Questions Cloud the Recent Targeting of an Asian Research Org 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/unanswered-questions-cloud-the-recent-targeting-of-an-asian-research-org\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2023-02-23T19:30:07+00:00","og_image":[{"url":"https:\/\/eu-images.contentstack.com\/v3\/assets\/blt66983808af36a8ef\/bltf0f2e30ede619176\/63dc2b594c4b0210bc379a94\/malware_Yuttanasshutterstock.jpg","type":"","width":"","height":""}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/unanswered-questions-cloud-the-recent-targeting-of-an-asian-research-org\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/unanswered-questions-cloud-the-recent-targeting-of-an-asian-research-org\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"Unanswered Questions Cloud the Recent Targeting of an Asian Research Org","datePublished":"2023-02-23T19:30:07+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/unanswered-questions-cloud-the-recent-targeting-of-an-asian-research-org\/"},"wordCount":553,"commentCount":0,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/unanswered-questions-cloud-the-recent-targeting-of-an-asian-research-org\/#primaryimage"},"thumbnailUrl":"https:\/\/eu-images.contentstack.com\/v3\/assets\/blt66983808af36a8ef\/bltf0f2e30ede619176\/63dc2b594c4b0210bc379a94\/malware_Yuttanasshutterstock.jpg","articleSection":["DarkReading |TI"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.threatshub.org\/blog\/unanswered-questions-cloud-the-recent-targeting-of-an-asian-research-org\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/unanswered-questions-cloud-the-recent-targeting-of-an-asian-research-org\/","url":"https:\/\/www.threatshub.org\/blog\/unanswered-questions-cloud-the-recent-targeting-of-an-asian-research-org\/","name":"Unanswered Questions Cloud the Recent Targeting of an Asian Research Org 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/unanswered-questions-cloud-the-recent-targeting-of-an-asian-research-org\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/unanswered-questions-cloud-the-recent-targeting-of-an-asian-research-org\/#primaryimage"},"thumbnailUrl":"https:\/\/eu-images.contentstack.com\/v3\/assets\/blt66983808af36a8ef\/bltf0f2e30ede619176\/63dc2b594c4b0210bc379a94\/malware_Yuttanasshutterstock.jpg","datePublished":"2023-02-23T19:30:07+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/unanswered-questions-cloud-the-recent-targeting-of-an-asian-research-org\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/unanswered-questions-cloud-the-recent-targeting-of-an-asian-research-org\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/unanswered-questions-cloud-the-recent-targeting-of-an-asian-research-org\/#primaryimage","url":"https:\/\/eu-images.contentstack.com\/v3\/assets\/blt66983808af36a8ef\/bltf0f2e30ede619176\/63dc2b594c4b0210bc379a94\/malware_Yuttanasshutterstock.jpg","contentUrl":"https:\/\/eu-images.contentstack.com\/v3\/assets\/blt66983808af36a8ef\/bltf0f2e30ede619176\/63dc2b594c4b0210bc379a94\/malware_Yuttanasshutterstock.jpg"},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/unanswered-questions-cloud-the-recent-targeting-of-an-asian-research-org\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"Unanswered Questions Cloud the Recent Targeting of an Asian Research Org"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/50713","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=50713"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/50713\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=50713"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=50713"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=50713"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}