{"id":56716,"date":"2024-07-31T14:04:21","date_gmt":"2024-07-31T14:04:21","guid":{"rendered":"https:\/\/packetstormsecurity.com\/news\/view\/36164\/Spamhaus-Is-Disappointed-With-CloudFlare.html"},"modified":"2024-07-31T14:04:21","modified_gmt":"2024-07-31T14:04:21","slug":"spamhaus-is-disappointed-with-cloudflare","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/spamhaus-is-disappointed-with-cloudflare\/","title":{"rendered":"Spamhaus Is Disappointed With CloudFlare"},"content":{"rendered":"

<\/p>\n

<\/p>\n

What Spamhaus is seeing<\/h3>\n

For years, Spamhaus has observed abusive activity facilitated by Cloudflare\u2019s various services. Cybercriminals have been exploiting these legitimate services to mask activities and enhance their malicious operations, a tactic referred to as living off trusted services (LOTS) [2].<\/p>\n

With 1201 unresolved Spamhaus Blocklist (SBL) listings<\/a> [3], it is clear that the state of affairs at Cloudflare\u2019s Connectivity Cloud looks less than optimal from an abuse-handling perspective. 10.05% of all domains listed on Spamhaus\u2019s Domain Blocklist (DBL)<\/a>, which indicates signs of spam or malicious activity, are on Cloudflare nameservers [3]. Spamhaus routinely observes miscreants moving their domains, which are already listed in the DBL, to Cloudflare to disguise the backend of their operation, be it spamvertized<\/a> domains, phishing, or worse.<\/p>\n

<\/div>\n

<\/p>\n

Further investigations<\/h3>\n

Research into websites that are openly advertising services to a cybercriminal audience, such as bulletproof hosting, reveals that many of these domains are supported by Cloudflare\u2019s services. As an example, task your trusted search engine with searching for bulletproof hosting [4], and you will find that many of the domains returned are, in fact, hosted on Cloudflare’s nameservers:<\/p>\n

<\/p>\n

bpserv.host. 3598 IN NS lloyd.ns.cloudflare.com<\/p>\n

bpserv.host. 3598 IN NS brit.ns.cloudflare.com<\/p>\n

<\/p>\n

impreza.host. 21600 IN NS chan.ns.cloudflare.com<\/p>\n

impreza.host. 21600 IN NS lex.ns.cloudflare.com<\/p>\n

Repeat this with other cybercriminal offerings of your choice – such as carding forums, DDoS-for-hire services, and worse – and the results will be similar.<\/p>\n

For a certain domain registrar, every single domain Spamhaus has observed appearing on Cloudflare\u2019s nameservers thus far is associated with phishing\u2014a campaign continuing for months on end.<\/p>\n

<\/div>\n

<\/p>\n

Cloudflare\u2019s anti-abuse conundrum<\/h3>\n

Cloudflare\u2019s approach to abuse is described on a web page<\/a>, and further explained in this article<\/a> published in August 2022. The troublesome point of their policy is: \u201cThe vast majority of abuse reports that we receive are about websites using our pass-through security, and content distribution network (CDN) services. Cloudflare does not host content through those services, and we cannot remove content from the internet that we do not host. Our abuse reporting system is therefore designed to ensure that your report gets to the parties best positioned to address your complaint: the website operator and the hosting provider for the website on which the content is posted.\u201d<\/p>\n

From a technical perspective, this approach might seem logical – however, Spamhaus is not asking Cloudflare to remove content from the internet, and other entities with an understanding of the principles of a CDN are unlikely to do so either. Rather, the request is for Cloudflare to stop providing their pass through services to abusive actors.<\/p>\n

Unfortunately, from an abuse-handling perspective, their approach is problematic. Cloudflare effectively masks the true location of the backend where services are being hosted, while passing on any complaints about abuse to the abused or abusive services. As a result, notifications to customers may end up going directly to the abuser, who can proceed to ignore them and, at the same time, refine their strategies to avoid further detection.<\/p>\n

Alternatively, the notifications may go to an intermediate actor like a hosting provider who, wholly screened from the public eye by the Cloudflare service, needs a solid motivation to terminate a paying customer that is not in the slightest deteriorating their reputation. The intermediate actor is then likely to ignore the notification or pass it over to the abusing customer and forget about it.<\/p>\n

The risk of this policy is that it could be perceived as facilitating a \u201cbulletproof [hosting] service,\u201d where the only visible internet resources associated with the abusers are (i) Cloudflare\u2019s and (ii) unstoppable by policy.<\/p>\n

<\/div>\n

<\/p>\n

Why does Cloudflare take this approach?<\/h3>\n

The advantage of this policy is that it makes life easy for Cloudflare, as they do not have to do any deep investigation or analysis of incidents, and notification flow can be largely automated. In this way, the cost of dealing with abuse is very low, benefiting the bottom line. Unfortunately, the effects of such an approach are felt negatively by the rest of the internet.<\/p>\n

<\/div>\n

<\/p>\n

How Cloudflare can resolve this issue<\/h3>\n

After receiving evidence of abuse, we\u2019d recommend Cloudflare suspend services to the abusers: namely, the authoritative DNS service to their domain(s), the reverse proxy services, and the CDN services. By doing this, contents would remain in the same place where they were before (unknown to everyone except Cloudflare), but would no longer be accessible through the Cloudflare network.<\/p>\n

A more detailed explanation of how ISPs can battle fraudulent sign-ups can be found here in a blog post<\/a> published by Spamhaus in 2012.<\/p>\n

<\/div>\n

<\/p>\n

A call for change<\/h3>\n

Being recognized as a leader in today\u2019s Content Delivery Network (CDN) market, Cloudflare has the tools and resources to provide robust services to legitimate customers, while keeping all the cybercriminals off its premises.<\/p>\n

Compared to small ISPs, they do not face constraints that make having a decent abuse desk prohibitively costly. The vast majority of abusive activity can be prevented upfront \u2013 in many cases, even without any human interaction. In light of this discrepancy, Cloudflare\u2019s and similar companies\u2019 current anti-abuse posture is weakening trust and safety.<\/p>\n

Spamhaus has always stressed that abuse does not \u201cjust happen\u201d \u2013 it is enabled.<\/p>\n

So, please, Cloudflare, and all those who run services from which miscreants \u201clive off,\u201d improve your abuse prevention and abuse handling \u2013 swiftly and significantly. We\u2019re here to work together to strengthen trust and safety for the internet, and welcome working with all organizations in that endeavour.<\/p>\n

[1] Spamhaus uses the services of Cloudflare. In fact Cloudflare helped Spamhaus during one of the worst DDoS attacks in the history of the internet, back in 2013. We were, and continue to be grateful, for the services Cloudflare provides us. Our concern is with how Cloudflare handles and prevents abuse. From a short-term business operating perspective, declining to tackle abuse makes financial sense. However, from a longer term brand and business continuity perspective, it presents significant challenges.<\/p>\n

[2] Known more properly as, \u201cliving off trusted sites\u201d – see our blog post<\/a>.<\/p>\n

[3] At the time of publishing.<\/p>\n

[4] Spamhaus defines bulletproof hosting \u2013 a SBL listing criteria \u2013 as \u201cDNS, web, mail or other services provided with either explicit or tacit actions not to disconnect customers who spam or engage in cybercrime.\u201d<\/p>\n

<\/div>\n

READ MORE HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

READ MORE HERE…<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[277],"tags":[10997],"class_list":["post-56716","post","type-post","status-publish","format-standard","hentry","category-cybersecurity-blogs","tag-headlinehackermalwarespamdenial-of-service"],"yoast_head":"\nSpamhaus Is Disappointed With CloudFlare 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/spamhaus-is-disappointed-with-cloudflare\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Spamhaus Is Disappointed With CloudFlare 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/spamhaus-is-disappointed-with-cloudflare\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2024-07-31T14:04:21+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/content.spamhaus.org\/f8d6f8e4-f9f3-4414-b048-f8bb26d6d195.png\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"5 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/spamhaus-is-disappointed-with-cloudflare\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/spamhaus-is-disappointed-with-cloudflare\\\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"Spamhaus Is Disappointed With CloudFlare\",\"datePublished\":\"2024-07-31T14:04:21+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/spamhaus-is-disappointed-with-cloudflare\\\/\"},\"wordCount\":1051,\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/spamhaus-is-disappointed-with-cloudflare\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/content.spamhaus.org\\\/f8d6f8e4-f9f3-4414-b048-f8bb26d6d195.png\",\"keywords\":[\"headline,hacker,malware,spam,denial of service\"],\"articleSection\":[\"CyberSecurity Blogs\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/spamhaus-is-disappointed-with-cloudflare\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/spamhaus-is-disappointed-with-cloudflare\\\/\",\"name\":\"Spamhaus Is Disappointed With CloudFlare 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/spamhaus-is-disappointed-with-cloudflare\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/spamhaus-is-disappointed-with-cloudflare\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/content.spamhaus.org\\\/f8d6f8e4-f9f3-4414-b048-f8bb26d6d195.png\",\"datePublished\":\"2024-07-31T14:04:21+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/spamhaus-is-disappointed-with-cloudflare\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/spamhaus-is-disappointed-with-cloudflare\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/spamhaus-is-disappointed-with-cloudflare\\\/#primaryimage\",\"url\":\"https:\\\/\\\/content.spamhaus.org\\\/f8d6f8e4-f9f3-4414-b048-f8bb26d6d195.png\",\"contentUrl\":\"https:\\\/\\\/content.spamhaus.org\\\/f8d6f8e4-f9f3-4414-b048-f8bb26d6d195.png\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/spamhaus-is-disappointed-with-cloudflare\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"headline,hacker,malware,spam,denial of service\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/tag\\\/headlinehackermalwarespamdenial-of-service\\\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Spamhaus Is Disappointed With CloudFlare\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Spamhaus Is Disappointed With CloudFlare 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/spamhaus-is-disappointed-with-cloudflare\/","og_locale":"en_US","og_type":"article","og_title":"Spamhaus Is Disappointed With CloudFlare 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/spamhaus-is-disappointed-with-cloudflare\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2024-07-31T14:04:21+00:00","og_image":[{"url":"https:\/\/content.spamhaus.org\/f8d6f8e4-f9f3-4414-b048-f8bb26d6d195.png","type":"","width":"","height":""}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"5 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/spamhaus-is-disappointed-with-cloudflare\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/spamhaus-is-disappointed-with-cloudflare\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"Spamhaus Is Disappointed With CloudFlare","datePublished":"2024-07-31T14:04:21+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/spamhaus-is-disappointed-with-cloudflare\/"},"wordCount":1051,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/spamhaus-is-disappointed-with-cloudflare\/#primaryimage"},"thumbnailUrl":"https:\/\/content.spamhaus.org\/f8d6f8e4-f9f3-4414-b048-f8bb26d6d195.png","keywords":["headline,hacker,malware,spam,denial of service"],"articleSection":["CyberSecurity Blogs"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/spamhaus-is-disappointed-with-cloudflare\/","url":"https:\/\/www.threatshub.org\/blog\/spamhaus-is-disappointed-with-cloudflare\/","name":"Spamhaus Is Disappointed With CloudFlare 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/spamhaus-is-disappointed-with-cloudflare\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/spamhaus-is-disappointed-with-cloudflare\/#primaryimage"},"thumbnailUrl":"https:\/\/content.spamhaus.org\/f8d6f8e4-f9f3-4414-b048-f8bb26d6d195.png","datePublished":"2024-07-31T14:04:21+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/spamhaus-is-disappointed-with-cloudflare\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/spamhaus-is-disappointed-with-cloudflare\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/spamhaus-is-disappointed-with-cloudflare\/#primaryimage","url":"https:\/\/content.spamhaus.org\/f8d6f8e4-f9f3-4414-b048-f8bb26d6d195.png","contentUrl":"https:\/\/content.spamhaus.org\/f8d6f8e4-f9f3-4414-b048-f8bb26d6d195.png"},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/spamhaus-is-disappointed-with-cloudflare\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"headline,hacker,malware,spam,denial of service","item":"https:\/\/www.threatshub.org\/blog\/tag\/headlinehackermalwarespamdenial-of-service\/"},{"@type":"ListItem","position":3,"name":"Spamhaus Is Disappointed With CloudFlare"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/56716","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=56716"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/56716\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=56716"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=56716"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=56716"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}