{"id":881,"date":"2018-05-18T14:20:58","date_gmt":"2018-05-18T14:20:58","guid":{"rendered":"https:\/\/kasperskycontenthub.com\/threatpost\/?p=132079"},"modified":"2018-05-18T14:20:58","modified_gmt":"2018-05-18T14:20:58","slug":"telegrab-malware-steals-telegram-desktop-messaging-sessions-steam-credentials","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/telegrab-malware-steals-telegram-desktop-messaging-sessions-steam-credentials\/","title":{"rendered":"TeleGrab Malware Steals Telegram Desktop Messaging Sessions, Steam Credentials"},"content":{"rendered":"<div class=\"media_block\"><\/div>\n<div><img decoding=\"async\" src=\"https:\/\/media.kasperskycontenthub.com\/wp-content\/uploads\/sites\/31\/2018\/03\/20144222\/Telegram_Messagees.jpg\" class=\"ff-og-image-inserted\"\/><\/div>\n<p>Recently discovered malware steals cache data and secure messaging sessions from the desktop version of encrypted messaging service Telegram.<\/p>\n<p>The malware, dubbed TeleGrab, leverages weak default settings in the design of Telegram\u2019s desktop version along with the desktop\u2019s lack of support for Secret Chats, according to researchers with Cisco\u2019s Talos team.<\/p>\n<p>Unlike the mobile version of Telegram, the desktop default version does not offer the end-to-end encrypted messaging feature called Secret Chats. Because this feature doesn\u2019t exist, the desktop version makes it possible for hackers, who have access to a target\u2019s computer, to \u201chijack\u201d Telegram sessions via the program\u2019s cache, according to researchers.<\/p>\n<p>\u201cThe malware abuses the lack of Secret Chats which is a feature, not a bug,\u201d wrote researchers a technical description of the malware\u00a0<a href=\"https:\/\/blog.talosintelligence.com\/2018\/05\/telegrab.html\">posted<\/a>\u00a0Wednesday. \u201cTelegram desktop by default doesn\u2019t have the auto-logout feature active. These two elements together are what allows the malware to hijack the session and consequently the conversations.\u201d<\/p>\n<p>That lack of encryption is something Telegram is open about in its <a href=\"https:\/\/core.telegram.org\/tsi\/e2ee-simple#2-why-are-there-no-secret-chats-on-desktop-apps\">FAQ<\/a>:<\/p>\n<blockquote>\n<p>\u201cSecret chats require permanent storage on the device, something that Telegram Desktop and Telegram Web don\u2019t support at the moment. We may add this in the future.\u201d<\/p>\n<\/blockquote>\n<p>The malware gathers all Telegram cache data and zips it before exfiltrating the data. By restoring cache and map files into an existing Telegram desktop installation with an open session, an attacker can then access the victims\u2019 contacts and previous chats, researchers said.<\/p>\n<p>\u201cThe data collected from infected systems could allow an attacker to hijack Telegram sessions simply by restoring the cache and map files into an existing attacker-controlled Telegram desktop installation,\u201d Talos researcher Edmund Brumaghin told Threatpost. \u201cThis effectively provides the attacker the ability to access the victim\u2019s sessions, contacts, and previous chats.\u201d<\/p>\n<p>That said, \u201cto the best of Talos\u2019 knowledge, there is no tool to decrypt the cache information,\u201d the researchers wrote. However, they found a Github discussion suggesting that it would be possible to develop a tool to decrypt the cache information.<\/p>\n<p>The malware operators can use several pcloud.com hardcoded accounts to store the exfiltrated information. That information is not encrypted, meaning that anyone with access to the right credentials will have access to the exfiltrated information, said researchers.<\/p>\n<p>\u201cThe keys used to encrypt the files on Telegram desktop data are store in the map files, which are encrypted by the password of the user,\u201d researchers wrote.\u00a0\u201cAssuming that the attacker does not have the password for these files, it would not be hard for them to create a brute-force mechanism that could allow them to get into these files.\u201d<\/p>\n<p>The malware was first spotted on April 4, 2018 and only stole text files, browser credentials, and cookies.\u00a0A second variant emerged on April 10 that upped the ante, stealing\u00a0Telegram\u2019s desktop cache as well as Steam login credentials.<\/p>\n<p>The campaign is being distributed using multiple downloaders written in different programming languages \u2013 Go, AutoIT, Python \u2013 and a prototype for a fourth one (DotNet). Researchers said that they have also spotted several YouTube videos with instructions for using victims\u2019 Telegram information to hijack their sessions. They linked these videos to the attacker behind the malware.<\/p>\n<p>The news comes after both <a href=\"https:\/\/threatpost.com\/telegram-ordered-to-hand-over-encryption-keys-to-russian-authorities\/130581\/\">Russia<\/a> and Iran have tried to ban the Britain-based messaging app service. Cisco said that TeleGrab targets Russian-speaking victims, and is intentionally avoiding IP addresses related with anonymizer services.<\/p>\n<p>\u201cAlthough it\u2019s not exploring any vulnerability, it is rather uncommon to see malware collecting this kind of information,\u201d Cisco Talos said. \u201cThis malware should be considered a wake-up call to encrypted messaging systems users. Features which are not clearly explained and bad defaults can put in jeopardy [their] privacy.\u201d<\/p>\n<p> READ MORE <a href=\"https:\/\/threatpost.com\/telegrab-malware-steals-telegram-desktop-messaging-sessions-steam-credentials\/132079\/\">HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>A recently discovered malware steals cache data and messaging sessions from the desktop version of encrypted messaging service Telegram. READ MORE HERE&#8230;<\/p>\n","protected":false},"author":2,"featured_media":882,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[3],"tags":[594,595,18,28,596,597,13],"class_list":["post-881","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-threatpost","tag-cache-data","tag-encrypted-chats","tag-hacks","tag-malware","tag-messaging-service","tag-telegrab","tag-telegram"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.6 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>TeleGrab Malware Steals Telegram Desktop Messaging Sessions, Steam Credentials 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/telegrab-malware-steals-telegram-desktop-messaging-sessions-steam-credentials\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"TeleGrab Malware Steals Telegram Desktop Messaging Sessions, Steam Credentials 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/telegrab-malware-steals-telegram-desktop-messaging-sessions-steam-credentials\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2018-05-18T14:20:58+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2018\/05\/telegrab-malware-steals-telegram-desktop-messaging-sessions-steam-credentials.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"800\" \/>\n\t<meta property=\"og:image:height\" content=\"573\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/telegrab-malware-steals-telegram-desktop-messaging-sessions-steam-credentials\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/telegrab-malware-steals-telegram-desktop-messaging-sessions-steam-credentials\\\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"TeleGrab Malware Steals Telegram Desktop Messaging Sessions, Steam Credentials\",\"datePublished\":\"2018-05-18T14:20:58+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/telegrab-malware-steals-telegram-desktop-messaging-sessions-steam-credentials\\\/\"},\"wordCount\":626,\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/telegrab-malware-steals-telegram-desktop-messaging-sessions-steam-credentials\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2018\\\/05\\\/telegrab-malware-steals-telegram-desktop-messaging-sessions-steam-credentials.jpg\",\"keywords\":[\"cache data\",\"encrypted chats\",\"Hacks\",\"Malware\",\"messaging service\",\"telegrab\",\"Telegram\"],\"articleSection\":[\"Threatpost\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/telegrab-malware-steals-telegram-desktop-messaging-sessions-steam-credentials\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/telegrab-malware-steals-telegram-desktop-messaging-sessions-steam-credentials\\\/\",\"name\":\"TeleGrab Malware Steals Telegram Desktop Messaging Sessions, Steam Credentials 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/telegrab-malware-steals-telegram-desktop-messaging-sessions-steam-credentials\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/telegrab-malware-steals-telegram-desktop-messaging-sessions-steam-credentials\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2018\\\/05\\\/telegrab-malware-steals-telegram-desktop-messaging-sessions-steam-credentials.jpg\",\"datePublished\":\"2018-05-18T14:20:58+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/telegrab-malware-steals-telegram-desktop-messaging-sessions-steam-credentials\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/telegrab-malware-steals-telegram-desktop-messaging-sessions-steam-credentials\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/telegrab-malware-steals-telegram-desktop-messaging-sessions-steam-credentials\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2018\\\/05\\\/telegrab-malware-steals-telegram-desktop-messaging-sessions-steam-credentials.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2018\\\/05\\\/telegrab-malware-steals-telegram-desktop-messaging-sessions-steam-credentials.jpg\",\"width\":800,\"height\":573},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/telegrab-malware-steals-telegram-desktop-messaging-sessions-steam-credentials\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"cache data\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/tag\\\/cache-data\\\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"TeleGrab Malware Steals Telegram Desktop Messaging Sessions, Steam Credentials\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"TeleGrab Malware Steals Telegram Desktop Messaging Sessions, Steam Credentials 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/telegrab-malware-steals-telegram-desktop-messaging-sessions-steam-credentials\/","og_locale":"en_US","og_type":"article","og_title":"TeleGrab Malware Steals Telegram Desktop Messaging Sessions, Steam Credentials 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/telegrab-malware-steals-telegram-desktop-messaging-sessions-steam-credentials\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2018-05-18T14:20:58+00:00","og_image":[{"width":800,"height":573,"url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2018\/05\/telegrab-malware-steals-telegram-desktop-messaging-sessions-steam-credentials.jpg","type":"image\/jpeg"}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/telegrab-malware-steals-telegram-desktop-messaging-sessions-steam-credentials\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/telegrab-malware-steals-telegram-desktop-messaging-sessions-steam-credentials\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"TeleGrab Malware Steals Telegram Desktop Messaging Sessions, Steam Credentials","datePublished":"2018-05-18T14:20:58+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/telegrab-malware-steals-telegram-desktop-messaging-sessions-steam-credentials\/"},"wordCount":626,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/telegrab-malware-steals-telegram-desktop-messaging-sessions-steam-credentials\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2018\/05\/telegrab-malware-steals-telegram-desktop-messaging-sessions-steam-credentials.jpg","keywords":["cache data","encrypted chats","Hacks","Malware","messaging service","telegrab","Telegram"],"articleSection":["Threatpost"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/telegrab-malware-steals-telegram-desktop-messaging-sessions-steam-credentials\/","url":"https:\/\/www.threatshub.org\/blog\/telegrab-malware-steals-telegram-desktop-messaging-sessions-steam-credentials\/","name":"TeleGrab Malware Steals Telegram Desktop Messaging Sessions, Steam Credentials 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/telegrab-malware-steals-telegram-desktop-messaging-sessions-steam-credentials\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/telegrab-malware-steals-telegram-desktop-messaging-sessions-steam-credentials\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2018\/05\/telegrab-malware-steals-telegram-desktop-messaging-sessions-steam-credentials.jpg","datePublished":"2018-05-18T14:20:58+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/telegrab-malware-steals-telegram-desktop-messaging-sessions-steam-credentials\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/telegrab-malware-steals-telegram-desktop-messaging-sessions-steam-credentials\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/telegrab-malware-steals-telegram-desktop-messaging-sessions-steam-credentials\/#primaryimage","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2018\/05\/telegrab-malware-steals-telegram-desktop-messaging-sessions-steam-credentials.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2018\/05\/telegrab-malware-steals-telegram-desktop-messaging-sessions-steam-credentials.jpg","width":800,"height":573},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/telegrab-malware-steals-telegram-desktop-messaging-sessions-steam-credentials\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"cache data","item":"https:\/\/www.threatshub.org\/blog\/tag\/cache-data\/"},{"@type":"ListItem","position":3,"name":"TeleGrab Malware Steals Telegram Desktop Messaging Sessions, Steam Credentials"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/881","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=881"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/881\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media\/882"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=881"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=881"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=881"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}