{"id":56360,"date":"2024-06-19T11:27:18","date_gmt":"2024-06-19T11:27:18","guid":{"rendered":"https:\/\/packetstormsecurity.com\/news\/view\/36015\/F5-Big-IP-Appliances-Exploited-For-3-Years-By-China-Linked-Group.html"},"modified":"2024-06-19T11:27:18","modified_gmt":"2024-06-19T11:27:18","slug":"f5-big-ip-appliances-exploited-for-3-years-by-china-linked-group","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/f5-big-ip-appliances-exploited-for-3-years-by-china-linked-group\/","title":{"rendered":"F5 Big-IP Appliances Exploited For 3 Years By China Linked Group"},"content":{"rendered":"<div><img decoding=\"async\" src=\"https:\/\/files.scmagazine.com\/wp-content\/uploads\/2023\/12\/1211_cybersecurity.jpg\" class=\"ff-og-image-inserted\"><\/div>\n<p>A China-nexus state-sponsored actor called Velvet Ant was observed conducting espionage after establishing persistence in a large organization\u2019s network for three years by exploiting two legacy F5 BigIP appliances with outdated, vulnerable operating systems.<\/p>\n<p>In a <a href=\"https:\/\/www.sygnia.co\/blog\/china-nexus-threat-group-velvet-ant\/\" target=\"_blank\" rel=\"noreferrer noopener\">June 17 blog post<\/a>, Sygnia researchers explained that <a href=\"https:\/\/www.scmagazine.com\/news\/screenconnect-big-ip-bugs-a-bonanza-for-hackers-conducting-cyberespionage\" target=\"_blank\" rel=\"noreferrer noopener\">F5 Big-IP<\/a> load balancer appliances occupy a trusted position within the network, often placed at the perimeter or between different network segments. By compromising such a device, the researchers said attackers can exert significant control over network traffic without arousing suspicion.&nbsp;<\/p>\n<p>The researchers said Velvet Ant used the tools and techniques typically associated with Chinese state-sponsored threat actors. For example, the attacks had a clear definition of goals, targeting of network devices, exploitation of vulnerabilities, and a toolset that includes the <a href=\"https:\/\/www.scmagazine.com\/brief\/novel-bloodalchemy-malware-examined\" target=\"_blank\" rel=\"noreferrer noopener\">ShadowPad<\/a> and <a href=\"https:\/\/www.scmagazine.com\/brief\/sophisticated-plugx-backdoor-variant-leveraged-in-mustang-panda-attacks\" target=\"_blank\" rel=\"noreferrer noopener\">PlugX<\/a> malware families, as well as the use of DLL side-loading techniques.<\/p>\n<p>Velvet Ant was very crafty and slippery, which made it possible for gain access to sensitive data, the researchers said. \u201cAfter one foothold was discovered and remediated, the threat actor swiftly pivoted to another, demonstrating agility and adaptability in evading detection. The threat actor also exploited various entry points across the victim\u2019s network infrastructure, indicating a comprehensive understanding of the target\u2019s environment.\u201d<\/p>\n<h2>Outdated technology targeted by threat actors<\/h2>\n<p>Legacy equipment in an organization&#8217;s network has clearly become a significant cybersecurity risk, said Jason Soroko, senior vice president of product at Sectigo. Soroko said these outdated systems lack modern authentication capabilities and have vulnerabilities that often teams cannot patch, making them prime targets for cyberattacks.<\/p>\n<p>\u201cLegacy systems also often rely on simple passwords [gained from harvested credentials], as seen in the Velvet Ant attack,\u201d said Soroko. \u201cDespite efforts to eradicate these threats, legacy equipment provided persistent re-entry points for attackers. Balancing the risk posed by legacy systems with the investment needed to upgrade them is crucial. These kinds of decisions need to be made using a top-down approach, with executives who own the risk within an organization understanding where the balance point is.\u201d<\/p>\n<p>Chinese APTs have a documented history of maintaining prolonged access to targeted networks, explained Callie Guenther, senior manager of threat research at Critical Start, and an <a href=\"https:\/\/www.scmagazine.com\/perspective\/why-teams-need-a-strategy-for-responding-to-ai-driven-threats\" target=\"_blank\" rel=\"noreferrer noopener\">SC Media columnist<\/a>. &nbsp;Guenther said Velvet Ant&#8217;s TTPs align closely with known behaviors of Chinese threat groups, often characterized by&nbsp;their persistence, adaptability, and long-term strategic objectives.<\/p>\n<p>\u201cThe use of legacy systems, like the F5 BIG-IP appliance in this case, as an entry and persistence point is not unusual,\u201d said Guenther. \u201cThese groups frequently exploit outdated and unpatched hardware and software, knowing that many organizations struggle with maintaining up-to-date systems due to various constraints.\u201d<\/p>\n<p>Guenther added that Velvet Ant\u2019s use of multiple persistence mechanisms, such as DLL search order hijacking, DLL sideloading, and phantom DLL loading, alongside tampering with security software, demonstrates a sophisticated level of OpSec. The group&#8217;s ability to quickly adapt and pivot between different methods to maintain their foothold is indicative of advanced threat groups that continuously refine their techniques to evade detection.&nbsp;<\/p>\n<p>READ MORE <a href=\"https:\/\/packetstormsecurity.com\/news\/view\/36015\/F5-Big-IP-Appliances-Exploited-For-3-Years-By-China-Linked-Group.html\">HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>READ MORE HERE&#8230;<\/p>\n","protected":false},"author":2,"featured_media":56361,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[277],"tags":[10959],"class_list":["post-56360","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity-blogs","tag-headlinehackerchinaflaw"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.8 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>F5 Big-IP Appliances Exploited For 3 Years By China Linked Group 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/f5-big-ip-appliances-exploited-for-3-years-by-china-linked-group\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"F5 Big-IP Appliances Exploited For 3 Years By China Linked Group 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/f5-big-ip-appliances-exploited-for-3-years-by-china-linked-group\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2024-06-19T11:27:18+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/files.scmagazine.com\/wp-content\/uploads\/2023\/12\/1211_cybersecurity.jpg\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/f5-big-ip-appliances-exploited-for-3-years-by-china-linked-group\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/f5-big-ip-appliances-exploited-for-3-years-by-china-linked-group\\\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"F5 Big-IP Appliances Exploited For 3 Years By China Linked Group\",\"datePublished\":\"2024-06-19T11:27:18+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/f5-big-ip-appliances-exploited-for-3-years-by-china-linked-group\\\/\"},\"wordCount\":516,\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/f5-big-ip-appliances-exploited-for-3-years-by-china-linked-group\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2024\\\/06\\\/f5-big-ip-appliances-exploited-for-3-years-by-china-linked-group.jpg\",\"keywords\":[\"headline,hacker,china,flaw\"],\"articleSection\":[\"CyberSecurity Blogs\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/f5-big-ip-appliances-exploited-for-3-years-by-china-linked-group\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/f5-big-ip-appliances-exploited-for-3-years-by-china-linked-group\\\/\",\"name\":\"F5 Big-IP Appliances Exploited For 3 Years By China Linked Group 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/f5-big-ip-appliances-exploited-for-3-years-by-china-linked-group\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/f5-big-ip-appliances-exploited-for-3-years-by-china-linked-group\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2024\\\/06\\\/f5-big-ip-appliances-exploited-for-3-years-by-china-linked-group.jpg\",\"datePublished\":\"2024-06-19T11:27:18+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/f5-big-ip-appliances-exploited-for-3-years-by-china-linked-group\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/f5-big-ip-appliances-exploited-for-3-years-by-china-linked-group\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/f5-big-ip-appliances-exploited-for-3-years-by-china-linked-group\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2024\\\/06\\\/f5-big-ip-appliances-exploited-for-3-years-by-china-linked-group.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2024\\\/06\\\/f5-big-ip-appliances-exploited-for-3-years-by-china-linked-group.jpg\",\"width\":1067,\"height\":600},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/f5-big-ip-appliances-exploited-for-3-years-by-china-linked-group\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"headline,hacker,china,flaw\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/tag\\\/headlinehackerchinaflaw\\\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"F5 Big-IP Appliances Exploited For 3 Years By China Linked Group\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"F5 Big-IP Appliances Exploited For 3 Years By China Linked Group 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/f5-big-ip-appliances-exploited-for-3-years-by-china-linked-group\/","og_locale":"en_US","og_type":"article","og_title":"F5 Big-IP Appliances Exploited For 3 Years By China Linked Group 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/f5-big-ip-appliances-exploited-for-3-years-by-china-linked-group\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2024-06-19T11:27:18+00:00","og_image":[{"url":"https:\/\/files.scmagazine.com\/wp-content\/uploads\/2023\/12\/1211_cybersecurity.jpg","type":"","width":"","height":""}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/f5-big-ip-appliances-exploited-for-3-years-by-china-linked-group\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/f5-big-ip-appliances-exploited-for-3-years-by-china-linked-group\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"F5 Big-IP Appliances Exploited For 3 Years By China Linked Group","datePublished":"2024-06-19T11:27:18+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/f5-big-ip-appliances-exploited-for-3-years-by-china-linked-group\/"},"wordCount":516,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/f5-big-ip-appliances-exploited-for-3-years-by-china-linked-group\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2024\/06\/f5-big-ip-appliances-exploited-for-3-years-by-china-linked-group.jpg","keywords":["headline,hacker,china,flaw"],"articleSection":["CyberSecurity Blogs"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/f5-big-ip-appliances-exploited-for-3-years-by-china-linked-group\/","url":"https:\/\/www.threatshub.org\/blog\/f5-big-ip-appliances-exploited-for-3-years-by-china-linked-group\/","name":"F5 Big-IP Appliances Exploited For 3 Years By China Linked Group 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/f5-big-ip-appliances-exploited-for-3-years-by-china-linked-group\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/f5-big-ip-appliances-exploited-for-3-years-by-china-linked-group\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2024\/06\/f5-big-ip-appliances-exploited-for-3-years-by-china-linked-group.jpg","datePublished":"2024-06-19T11:27:18+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/f5-big-ip-appliances-exploited-for-3-years-by-china-linked-group\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/f5-big-ip-appliances-exploited-for-3-years-by-china-linked-group\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/f5-big-ip-appliances-exploited-for-3-years-by-china-linked-group\/#primaryimage","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2024\/06\/f5-big-ip-appliances-exploited-for-3-years-by-china-linked-group.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2024\/06\/f5-big-ip-appliances-exploited-for-3-years-by-china-linked-group.jpg","width":1067,"height":600},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/f5-big-ip-appliances-exploited-for-3-years-by-china-linked-group\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"headline,hacker,china,flaw","item":"https:\/\/www.threatshub.org\/blog\/tag\/headlinehackerchinaflaw\/"},{"@type":"ListItem","position":3,"name":"F5 Big-IP Appliances Exploited For 3 Years By China Linked Group"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/56360","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=56360"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/56360\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media\/56361"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=56360"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=56360"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=56360"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}