{"id":7541,"date":"2018-07-26T10:02:00","date_gmt":"2018-07-26T10:02:00","guid":{"rendered":"http:\/\/e762fe57-56ed-46b7-ab04-57f9c22143e2"},"modified":"2018-07-26T10:02:00","modified_gmt":"2018-07-26T10:02:00","slug":"hacking-campaign-combines-attacks-to-target-government-finance-and-energy","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/hacking-campaign-combines-attacks-to-target-government-finance-and-energy\/","title":{"rendered":"Hacking campaign combines attacks to target government, finance and energy"},"content":{"rendered":"
<\/div>\n

A newly uncovered cyber espionage operation<\/span> is combining the use of known exploits and attacks with custom-built malware in a campaign which has targeted hundreds of organisations, particularly those in government, finance and energy.<\/p>\n

Discovered by researchers at Symantec<\/a>, the new group<\/span> is called Leafminer and has been operating out of Iran since at least early 2017.<\/p>\n

The malware and custom tools<\/span> used by Leafminer have been detected across 44 systems in the Middle East – 28 in Saudi Arabia, eight<\/span> in Lebanon, three<\/span> in Israel, one<\/span> in Kuwait and four in unknown locations<\/span> – but the investigation into the campaign found a list of 809 targets.<\/p>\n

Activity by the attackers suggests the goal of the campaign is to steal data, including emails, credentials, files and information on database servers operated by compromised targets.<\/p>\n

Leafminer uses three main techniques for compromising target<\/span> networks – watering hole attacks, vulnerabilities in network services<\/span> and brute-force dictionary attacks which attempt to crack passwords. Researchers note that phishing emails might also be used<\/a>, but direct evidence for this hasn’t yet been seen.<\/p>\n

It’s the watering hole attacks and the discovery of compromised websites which initially led Symantec<\/span> on the path<\/span> to detect Leafminer. The watering hole attacks saw obfuscated JavaScript code left on targeted websites as a means of abusing SMB protocols to retrieve passwords.<\/p>\n

Compromised targets included a Lebanese government site, a Saudia Arabian healthcare site and an Azerbaijan university. Researchers note that the same technique was deployed by the DragonFly hacking group last year<\/a> – but rather than being a related attack<\/span> group, Leafminer appears to be<\/span> mimicking the attack.<\/p>\n

\n<\/section>\n

See<\/span> also:<\/strong><\/strong> Can Russian hackers be stopped? Here’s why it might take 20 years<\/a><\/strong> [TechRepublic]<\/strong><\/p>\n

This isn’t the only tactic which Leafminer has picked up of successful campaigns by other<\/span> criminal groups. Leafminer uses EternalBlue<\/a> – the leaked NSA vulnerability<\/a> which powered WannaCry ransomware<\/a> – to move within<\/span> targeted networks.<\/p>\n

The attackers also attempt to scan<\/span> for Heartbleed<\/a>, an OpenSSL vulnerability which could allow attackers to see encrypted<\/span> data. Heartbleed came to light in 2014, but thousands of sites still remain vulnerable<\/a>.<\/p>\n

Another known technique is lifted in order to help exfiltrate data. Known as Doppelg\u00e4nging<\/a>, the process was revealed late last year and circumvents security tools by using process hollowing to make the malicious processes look benign.<\/p>\n

The use of all the above leads Symantec to state that Leafminer actively monitors<\/span> developers and publications<\/span> of offensive techniques for ideas.<\/p>\n

But the campaign isn’t purely based on re-purposed attacks deployed by others, as Leafminer has also deployed two strains of custom malware during their campaigns – Imecab<\/a> and Sorgu<\/a>.<\/p>\n

Imecab is designed<\/span> to set up persisent remote access<\/span> to a target machine with a hard-coded password and is installed as a Windows service in order to ensure it remains available to the attacker.<\/p>\n

Sorgu is used in a similar fashion<\/span>, providing remote access to the infected<\/span> machine and is also installed as a service in the Windows system via a shell command<\/span> script.<\/p>\n

But while the Leafminer group appears keen to learn<\/span> from other successful espionage campaigns, one thing it has failed at is operational security: researchers uncovered a staging server used by the attackers to be publicly accessible, exposing the group’s entire arsenal<\/span> of tools, indicating inexperience by the attackers.<\/p>\n

This public information also led to a list of over 800 potential targets in government, finance and energy across the Middle East. The list is written in the Iranian Farsi language, leading researchers to conclude that the group is based in Iran – although there’s currently no evidence of it being a state-backed campaign<\/a>.<\/p>\n

No matter who is behind the campaign, it’s likely that the group will continue to develop offensive techniques – and they could even widen the scope of malicious attacks.<\/p>\n

“It’s possible the group would keep adopting and adapting<\/span> both new publicly available hacking tools and techniques, as well as proof-of-concept exploits for new and old vulnerabilities,” Armin Buescher, Threat Researcher at Symantec told ZDNet.<\/p>\n

“In terms of targeting, the attackers might continue going after targets in the Middle East, perhaps even expanding to countries outside of the region.”<\/p>\n

READ MORE ON CYBER CRIME<\/strong><\/p>\n

READ MORE HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

Attack group operating out of Iran copies techniques used in successful, high-profile attacks – but forget to cover their tracks, leaving their tactics exposed.
\nREAD MORE HERE…<\/p>\n","protected":false},"author":2,"featured_media":7542,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[62],"tags":[],"class_list":["post-7541","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-zdnet-security"],"yoast_head":"\nHacking campaign combines attacks to target government, finance and energy 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/hacking-campaign-combines-attacks-to-target-government-finance-and-energy\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Hacking campaign combines attacks to target government, finance and energy 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/hacking-campaign-combines-attacks-to-target-government-finance-and-energy\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2018-07-26T10:02:00+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2018\/07\/hacking-campaign-combines-attacks-to-target-government-finance-and-energy.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"770\" \/>\n\t<meta property=\"og:image:height\" content=\"578\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hacking-campaign-combines-attacks-to-target-government-finance-and-energy\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hacking-campaign-combines-attacks-to-target-government-finance-and-energy\\\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"Hacking campaign combines attacks to target government, finance and energy\",\"datePublished\":\"2018-07-26T10:02:00+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hacking-campaign-combines-attacks-to-target-government-finance-and-energy\\\/\"},\"wordCount\":712,\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hacking-campaign-combines-attacks-to-target-government-finance-and-energy\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2018\\\/07\\\/hacking-campaign-combines-attacks-to-target-government-finance-and-energy.jpg\",\"articleSection\":[\"ZDNet | Security\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hacking-campaign-combines-attacks-to-target-government-finance-and-energy\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hacking-campaign-combines-attacks-to-target-government-finance-and-energy\\\/\",\"name\":\"Hacking campaign combines attacks to target government, finance and energy 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hacking-campaign-combines-attacks-to-target-government-finance-and-energy\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hacking-campaign-combines-attacks-to-target-government-finance-and-energy\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2018\\\/07\\\/hacking-campaign-combines-attacks-to-target-government-finance-and-energy.jpg\",\"datePublished\":\"2018-07-26T10:02:00+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hacking-campaign-combines-attacks-to-target-government-finance-and-energy\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hacking-campaign-combines-attacks-to-target-government-finance-and-energy\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hacking-campaign-combines-attacks-to-target-government-finance-and-energy\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2018\\\/07\\\/hacking-campaign-combines-attacks-to-target-government-finance-and-energy.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2018\\\/07\\\/hacking-campaign-combines-attacks-to-target-government-finance-and-energy.jpg\",\"width\":770,\"height\":578},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hacking-campaign-combines-attacks-to-target-government-finance-and-energy\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Hacking campaign combines attacks to target government, finance and energy\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Hacking campaign combines attacks to target government, finance and energy 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/hacking-campaign-combines-attacks-to-target-government-finance-and-energy\/","og_locale":"en_US","og_type":"article","og_title":"Hacking campaign combines attacks to target government, finance and energy 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/hacking-campaign-combines-attacks-to-target-government-finance-and-energy\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2018-07-26T10:02:00+00:00","og_image":[{"width":770,"height":578,"url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2018\/07\/hacking-campaign-combines-attacks-to-target-government-finance-and-energy.jpg","type":"image\/jpeg"}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/hacking-campaign-combines-attacks-to-target-government-finance-and-energy\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/hacking-campaign-combines-attacks-to-target-government-finance-and-energy\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"Hacking campaign combines attacks to target government, finance and energy","datePublished":"2018-07-26T10:02:00+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/hacking-campaign-combines-attacks-to-target-government-finance-and-energy\/"},"wordCount":712,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/hacking-campaign-combines-attacks-to-target-government-finance-and-energy\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2018\/07\/hacking-campaign-combines-attacks-to-target-government-finance-and-energy.jpg","articleSection":["ZDNet | Security"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/hacking-campaign-combines-attacks-to-target-government-finance-and-energy\/","url":"https:\/\/www.threatshub.org\/blog\/hacking-campaign-combines-attacks-to-target-government-finance-and-energy\/","name":"Hacking campaign combines attacks to target government, finance and energy 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/hacking-campaign-combines-attacks-to-target-government-finance-and-energy\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/hacking-campaign-combines-attacks-to-target-government-finance-and-energy\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2018\/07\/hacking-campaign-combines-attacks-to-target-government-finance-and-energy.jpg","datePublished":"2018-07-26T10:02:00+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/hacking-campaign-combines-attacks-to-target-government-finance-and-energy\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/hacking-campaign-combines-attacks-to-target-government-finance-and-energy\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/hacking-campaign-combines-attacks-to-target-government-finance-and-energy\/#primaryimage","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2018\/07\/hacking-campaign-combines-attacks-to-target-government-finance-and-energy.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2018\/07\/hacking-campaign-combines-attacks-to-target-government-finance-and-energy.jpg","width":770,"height":578},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/hacking-campaign-combines-attacks-to-target-government-finance-and-energy\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"Hacking campaign combines attacks to target government, finance and energy"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/7541","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=7541"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/7541\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media\/7542"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=7541"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=7541"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=7541"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}