{"id":50742,"date":"2023-02-24T20:42:04","date_gmt":"2023-02-24T20:42:04","guid":{"rendered":"https:\/\/packetstormsecurity.com\/news\/view\/34360\/Wslink-Downloader-May-Have-Links-To-North-Korean-Lazarus-Group.html"},"modified":"2023-02-24T20:42:04","modified_gmt":"2023-02-24T20:42:04","slug":"wslink-downloader-may-have-links-to-north-korean-lazarus-group","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/wslink-downloader-may-have-links-to-north-korean-lazarus-group\/","title":{"rendered":"Wslink Downloader May Have Links To North Korean Lazarus Group"},"content":{"rendered":"<div><img decoding=\"async\" src=\"https:\/\/files.scmagazine.com\/wp-content\/uploads\/2023\/02\/022323_north_korea.jpg\" class=\"ff-og-image-inserted\"><\/div>\n<p>Researchers reported discovering one of the payloads of the&nbsp;<a rel=\"noreferrer noopener\" href=\"https:\/\/www.welivesecurity.com\/2021\/10\/27\/wslink-unique-undocumented-malicious-loader-runs-server\/\" target=\"_blank\">Wslink downloader<\/a>&nbsp;first uncovered in 2021, saying with \u201clow confidence\u201d that it could be linked to the North Korean-backed Lazarus Group best known for the 2014 Sony hack.<\/p>\n<p>In a Feb. 23 <a rel=\"noreferrer noopener\" href=\"https:\/\/www.welivesecurity.com\/2023\/02\/23\/winordll64-backdoor-vast-lazarus-arsenal\/\" target=\"_blank\">blog post<\/a>, ESET researchers named the payload WinorDLL64 based on its filename, WinorDLL64.dll. The payload contains an overlap in the development environment, behavior and code with <a rel=\"noreferrer noopener\" href=\"https:\/\/www.scmagazine.com\/analysis\/threat-intelligence\/lazarus-campaign-exploits-unpatched-zimbra-devices-targets-medical-data\" target=\"_blank\">several Lazarus samples.<\/a><\/p>\n<p>Along with the Sony hack, Lazarus was responsible for stealing tens-of-millions-of-dollars in a&nbsp;<a rel=\"noreferrer noopener\" href=\"https:\/\/www.welivesecurity.com\/2016\/03\/15\/bangladesh-central-bank-boss-quits-100m-cyberheist\/\" target=\"_blank\">2016 cyberheist<\/a>, the <a rel=\"noreferrer noopener\" href=\"https:\/\/www.scmagazine.com\/analysis\/risk-management\/motivated-by-wannacry-attack-group-unveils-medical-device-incident-response-playbook\" target=\"_blank\">WannaCry<\/a> outbreak in 2017, and has a long history of disruptive attacks against&nbsp;<a rel=\"noreferrer noopener\" href=\"https:\/\/www.welivesecurity.com\/2020\/11\/16\/lazarus-supply-chain-attack-south-korea\/\" target=\"_blank\">South Korean public and critical infrastructure<\/a>. US-CERT and the FBI call the group <a href=\"https:\/\/www.cisa.gov\/uscert\/northkorea\" target=\"_blank\" rel=\"noreferrer noopener\">Hidden Cobra.<\/a><\/p>\n<p>ESET telemetry has seen only a few detections of Wslink in Central Europe, North America, and the Middle East.<\/p>\n<p>The researchers said the discovery was significant because Wslink\u2019s payload can provide a means for file manipulation, execution of further code, and obtaining extensive information about the underlying system that possibly can be leveraged for lateral movement. The Wslink loader listens on a port specified in the configuration and can serve additional connecting clients, and even load various payloads.<\/p>\n<p>WinorDLL64 serves as a backdoor that most notably acquires extensive system information, provides means for file manipulation, and executes additional commands. It communicates over a TCP connection that was already established by its loader and uses some of the loader\u2019s functions. The ESET researchers have &#8220;high confidence&#8221; it\u2019s Wslink because its unique structure is used everywhere in the expected way: the TLS-context and other meaningful parameters are supplied in the anticipated order to the correct callbacks.<\/p>\n<h2>Is it Lazarus or a copycat group?<\/h2>\n<p>James Lively, endpoint security research specialist at Tanium, explained that this general threat is indicative of what one would see from an APT, which are&nbsp;typically surgical in nature pursuing their targets for a variety&nbsp;of reasons.&nbsp;Lively said syndicates such as <a href=\"https:\/\/www.scmagazine.com\/analysis\/ransomware\/north-korea-using-healthcare-ransomware-attacks-to-fund-further-cybercrime-feds-say\" target=\"_blank\" rel=\"noreferrer noopener\">the Lazarus Group<\/a> primarily go after organizations for financial gains or political goals, adding that it\u2019s incredibly difficult to detect the WinorDLL64 backdoor as it can operate solely from memory.<\/p>\n<p>Lively added that monitoring memory to the extent that it would take to detect this type of backdoor is resource-intensive and often impractical.&nbsp;<\/p>\n<p>\u201cSecurity teams should employ extensive patching practices to vulnerable services and software to minimize the avenues for malicious actors to gain access to their network,\u201d said Lively. Additionally, they should deploy anti-phishing campaigns and training to their users to raise awareness about identifying and reporting malicious emails and links.\u201d<\/p>\n<p>Andrew Barratt, vice president at Coalfire, said ESET has a highly respected team and have products that Coalfire has leveraged in its own forensics work. Barratt said it was interesting that ESET was highlighting similarities, but have \u201clow levels\u201d of confidence in the source.&nbsp;<\/p>\n<p>\u201cThis could be linked with the Lazarus Group. However, it could equally be copycat behavior that\u2019s trying to stay off radar with limited deployments, perhaps due to being used on highly target attacks or as part of a malware-for-hire group,\u201d said Barratt.&nbsp;\u201cThis would be consistent with the type of tool. It could be used by initial access vendors who sell access for others to then pull down and execute more bespoke malware depending on the target that has been compromised.\u201d<\/p>\n<p>READ MORE <a href=\"https:\/\/packetstormsecurity.com\/news\/view\/34360\/Wslink-Downloader-May-Have-Links-To-North-Korean-Lazarus-Group.html\">HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>READ MORE HERE&#8230;<\/p>\n","protected":false},"author":2,"featured_media":50743,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[60],"tags":[592],"class_list":["post-50742","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-packet-storm","tag-headlinemalware"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.8 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Wslink Downloader May Have Links To North Korean Lazarus Group 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/wslink-downloader-may-have-links-to-north-korean-lazarus-group\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Wslink Downloader May Have Links To North Korean Lazarus Group 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/wslink-downloader-may-have-links-to-north-korean-lazarus-group\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2023-02-24T20:42:04+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/files.scmagazine.com\/wp-content\/uploads\/2023\/02\/022323_north_korea.jpg\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wslink-downloader-may-have-links-to-north-korean-lazarus-group\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wslink-downloader-may-have-links-to-north-korean-lazarus-group\\\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"Wslink Downloader May Have Links To North Korean Lazarus Group\",\"datePublished\":\"2023-02-24T20:42:04+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wslink-downloader-may-have-links-to-north-korean-lazarus-group\\\/\"},\"wordCount\":568,\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wslink-downloader-may-have-links-to-north-korean-lazarus-group\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/02\\\/wslink-downloader-may-have-links-to-north-korean-lazarus-group.jpg\",\"keywords\":[\"headline,malware\"],\"articleSection\":[\"Packet Storm\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wslink-downloader-may-have-links-to-north-korean-lazarus-group\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wslink-downloader-may-have-links-to-north-korean-lazarus-group\\\/\",\"name\":\"Wslink Downloader May Have Links To North Korean Lazarus Group 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wslink-downloader-may-have-links-to-north-korean-lazarus-group\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wslink-downloader-may-have-links-to-north-korean-lazarus-group\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/02\\\/wslink-downloader-may-have-links-to-north-korean-lazarus-group.jpg\",\"datePublished\":\"2023-02-24T20:42:04+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wslink-downloader-may-have-links-to-north-korean-lazarus-group\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wslink-downloader-may-have-links-to-north-korean-lazarus-group\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wslink-downloader-may-have-links-to-north-korean-lazarus-group\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/02\\\/wslink-downloader-may-have-links-to-north-korean-lazarus-group.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/02\\\/wslink-downloader-may-have-links-to-north-korean-lazarus-group.jpg\",\"width\":1280,\"height\":800},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wslink-downloader-may-have-links-to-north-korean-lazarus-group\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"headline,malware\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/tag\\\/headlinemalware\\\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Wslink Downloader May Have Links To North Korean Lazarus Group\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Wslink Downloader May Have Links To North Korean Lazarus Group 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/wslink-downloader-may-have-links-to-north-korean-lazarus-group\/","og_locale":"en_US","og_type":"article","og_title":"Wslink Downloader May Have Links To North Korean Lazarus Group 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/wslink-downloader-may-have-links-to-north-korean-lazarus-group\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2023-02-24T20:42:04+00:00","og_image":[{"url":"https:\/\/files.scmagazine.com\/wp-content\/uploads\/2023\/02\/022323_north_korea.jpg","type":"","width":"","height":""}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/wslink-downloader-may-have-links-to-north-korean-lazarus-group\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/wslink-downloader-may-have-links-to-north-korean-lazarus-group\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"Wslink Downloader May Have Links To North Korean Lazarus Group","datePublished":"2023-02-24T20:42:04+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/wslink-downloader-may-have-links-to-north-korean-lazarus-group\/"},"wordCount":568,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/wslink-downloader-may-have-links-to-north-korean-lazarus-group\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2023\/02\/wslink-downloader-may-have-links-to-north-korean-lazarus-group.jpg","keywords":["headline,malware"],"articleSection":["Packet Storm"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/wslink-downloader-may-have-links-to-north-korean-lazarus-group\/","url":"https:\/\/www.threatshub.org\/blog\/wslink-downloader-may-have-links-to-north-korean-lazarus-group\/","name":"Wslink Downloader May Have Links To North Korean Lazarus Group 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/wslink-downloader-may-have-links-to-north-korean-lazarus-group\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/wslink-downloader-may-have-links-to-north-korean-lazarus-group\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2023\/02\/wslink-downloader-may-have-links-to-north-korean-lazarus-group.jpg","datePublished":"2023-02-24T20:42:04+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/wslink-downloader-may-have-links-to-north-korean-lazarus-group\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/wslink-downloader-may-have-links-to-north-korean-lazarus-group\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/wslink-downloader-may-have-links-to-north-korean-lazarus-group\/#primaryimage","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2023\/02\/wslink-downloader-may-have-links-to-north-korean-lazarus-group.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2023\/02\/wslink-downloader-may-have-links-to-north-korean-lazarus-group.jpg","width":1280,"height":800},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/wslink-downloader-may-have-links-to-north-korean-lazarus-group\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"headline,malware","item":"https:\/\/www.threatshub.org\/blog\/tag\/headlinemalware\/"},{"@type":"ListItem","position":3,"name":"Wslink Downloader May Have Links To North Korean Lazarus Group"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/50742","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=50742"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/50742\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media\/50743"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=50742"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=50742"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=50742"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}