{"id":118584,"date":"2025-07-29T14:42:35","date_gmt":"2025-07-29T14:42:35","guid":{"rendered":"https:\/\/cybersecuritynews.com\/?p=118584"},"modified":"2025-07-29T14:42:41","modified_gmt":"2025-07-29T14:42:41","slug":"chinese-hackers-weaponizes-software-vulnerabilities","status":"publish","type":"post","link":"https:\/\/cybersecuritynews.com\/chinese-hackers-weaponizes-software-vulnerabilities\/","title":{"rendered":"Chinese Hackers Weaponizes Software Vulnerabilities to Compromise Their Targets"},"content":{"rendered":"\n

Over the past year, a previously quiet Chinese threat cluster has surged onto incident-response dashboards worldwide, pivoting from single zero-day hits to an industrialized pipeline of weaponized vulnerabilities.<\/p>\n\n\n\n

First detected targeting unpatched Fortinet SSL-VPN appliances in late-2024, the group\u2014dubbed \u201cGoujian Spider\u201d by incident handlers\u2014now blends rapid vulnerability acquisition with skillful post-exploitation automation, breaching defense contractors, chip designers, and maritime-logistics firms in nine countries.<\/p>\n\n\n\n

Each intrusion begins with a freshly harvested flaw, usually appearing on China\u2019s internal National Vulnerability Database (NVDB) weeks before a public CVE number is assigned, giving operators a decisive head start.<\/p>\n\n\n\n

Initial access is followed by the quiet deployment of an encrypted loader that unwraps a bespoke Golang<\/a> implant nicknamed \u201cREDSAM\u201d for its hard-coded command string, red_sam_initialize()<\/code>.<\/p>\n\n\n\n

Archive analysts noted<\/a> the malware after correlating traffic spikes from a Shanghai AS to simultaneous NVDB disclosures on February 11, 2025, flagging the campaign as the first field proof that China\u2019s 2021 Regulations on the Management of Network Product Security Vulnerabilities (RMSV) had matured into a full offensive supply chain.<\/p>\n\n\n\n

Researchers identified that Goujian Spider cycled through three distinct exploits in just forty-eight hours\u2014one for Ivanti Connect Secure, one for Atlassian Confluence, and one for a niche OPC UA gateway\u2014suggesting privileged access to vulnerability feeds well before patches shipped.<\/p>\n\n\n\n

The impact is significant: incident responders trace at least sixty hosts exfiltrating design files, satellite telemetry, and employee single sign-on cookies.<\/p>\n\n\n\n

Post-mortem forensic timelines show REDSAM executing only after vulnerabilities were publicly acknowledged, indicating deliberate staging to mask the initial foothold and frustrate attribution.<\/p>\n\n\n\n

Inside the Infection Mechanism<\/strong><\/h2>\n\n\n\n

Goujian Spider\u2019s infection chain compresses reconnaissance<\/a>, exploitation, and persistence into fewer than 400 lines of code.<\/p>\n\n\n

\n
\"\"
Attack flow (Source – Archive)<\/figcaption><\/figure><\/div>\n\n\n

Once the vulnerable web component is probed with a crafted request, a memory-only loader called \u201cLilacDrop\u201d is streamed via chunked HTTP and executed through reflective DLL loading<\/a>.<\/p>\n\n\n\n

The following Go fragment (de-obfuscated by reversing teams) reveals how LilacDrop injects REDSAM into spoolsv.exe<\/code>, bypassing common EDR hooks:-<\/p>\n\n\n\n

func elevateAndSpawn(shellcode []byte) error {\n    hProc, _ := windows.OpenProcess(windows.PROCESS_ALL_ACCESS, false, pidByName(\"spoolsv.exe\"))\n    remoteAddr, _ := windows.VirtualAllocEx(hProc, 0, uintptr(len(shellcode)),\n                                            windows.MEM_COMMIT, windows.PAGE_EXECUTE_READWRITE)\n    var written uintptr\n    windows.WriteProcessMemory(hProc, remoteAddr, &shellcode[0], uintptr(len(shellcode)), &written)\n    thd, _, _ := procCreateRemoteThread.Call(uintptr(hProc), 0, 0, remoteAddr, 0, 0, 0)\n    windows.WaitForSingleObject(windows.Handle(thd), windows.INFINITE)\n    return nil\n}<\/code><\/pre>\n\n\n\n
The snippet highlights three tactical choices:-<\/p>\n\n\n\n
    \n
  1. Process hijack over service creation<\/strong> \u2014 hijacking spoolsv.exe<\/code> avoids new services that defenders often audit.<\/li>\n\n\n\n
  2. Memory-only execution<\/strong> \u2014 no payload touches disk, thwarting signature-based scanners.<\/li>\n\n\n\n
  3. Single-thread completion<\/strong> \u2014 the code waits for the injected thread to finish before cleaning up, erasing forensics.<\/li>\n<\/ol>\n\n\n\n
    To remain resident, REDSAM creates a hidden Scheduled Task named \u201cWindows LSM Cache\u201d that runs every 15 minutes, but only if the NVDB entry for its initial CVE receives a public proof-of-concept tag\u2014ensuring the implant reactivates when defenders are busiest.<\/p>\n\n\n\n
    Detection evasion extends to log pruning: a built-in routine searches Windows Event ID 4104 (PowerShell), 4688 (process creation), and 1102 (audit log cleared) and selectively deletes lines containing its mutex Global\\RS_MUTEX<\/code>.<\/p>\n\n\n
    \n
    \"\"
    A complete concept map of China\u2019s government vulnerabilities databases (Source – Archive)<\/figcaption><\/figure><\/div>\n\n\n
    This maps each stage\u2014from exploit to exfiltration<\/a>\u2014overlaying observed mutexes and command-and-control URIs extracted during a breach of a Taiwanese semiconductor fab.<\/p>\n\n\n\n
    While the timeline of NVDB vs. CVE Release shows the group\u2019s average eleven-day advantage between domestic disclosure and public CVE assignment.<\/p>\n\n\n\n
    Despite Goujian Spider\u2019s sophistication, defenders<\/a> can hunt for abnormal network egress to hard-coded \/public\/upload<\/code> paths on TCP 443 and monitor Scheduled Tasks for non-Microsoft descriptions.<\/p>\n\n\n\n
    Rapid patch adoption remains paramount: in the fab case, a timely vendor hotfix would have neutralized the Ivanti exploit three days before weaponization.<\/p>\n\n\n\n
    As RMSV-driven vulnerability harvesting accelerates, organizations must treat every NVDB listing\u2014public or leaked\u2014as an imminent threat window, shortening internal patch cycles accordingly.<\/p>\n\n\n\n
    Integrate\u00a0ANY.RUN TI Lookup<\/strong>\u00a0with your SIEM or SOAR To Analyses Advanced Threats<\/strong>\u00a0->\u00a0Try 50 Free Trial Searches<\/a><\/strong><\/p>\n","protected":false},"excerpt":{"rendered":"
    Over the past year, a previously quiet Chinese threat cluster has surged onto incident-response dashboards worldwide, pivoting from single zero-day hits to an industrialized pipeline of weaponized vulnerabilities. First detected targeting unpatched Fortinet SSL-VPN appliances in late-2024, the group\u2014dubbed \u201cGoujian Spider\u201d by incident handlers\u2014now blends rapid vulnerability acquisition with skillful post-exploitation automation, breaching defense contractors, […]<\/p>\n","protected":false},"author":6,"featured_media":118587,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEg3X2IX6IBmqjBjM1kuEKGgRysYrqlJxa52UfDXqmkutjmPvALLn25XdxEMoAw63Bxnq2u8NUg0ylxc_y5PcyapqQAm3L3oTEwqPJ7DMxHTWQOzogHOtA_k3YKrla5r06lR5p-pa5C7c5Rf7eBYOpSXX56ZEd9e_MxAP0m1eVJbfnWecqUgUPFjRj5_Wgo\/s16000\/Chinese%20Hackers%20Weaponizes%20Software%20Vulnerabilities%20to%20Compromise%20Their%20Targets.webp","fifu_image_alt":"","_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[11,48],"tags":[149,151],"class_list":{"0":"post-118584","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-cyber-security-news","8":"category-threats","9":"tag-cyber-security","10":"tag-cyber-security-news"},"yoast_head":"\nChinese Hackers Weaponizes Software Vulnerabilities to Compromise Their Targets<\/title>\n<meta name=\"description\" content=\"Goujian Spider APT exploits pre-CVE flaws from China\u2019s NVDB, using REDSAM malware to target global firms with rapid zero-day attacks.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/cybersecuritynews.com\/chinese-hackers-weaponizes-software-vulnerabilities\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Chinese Hackers Weaponizes Software Vulnerabilities to Compromise Their Targets\" \/>\n<meta property=\"og:description\" content=\"Goujian Spider APT exploits pre-CVE flaws from China\u2019s NVDB, using REDSAM malware to target global firms with rapid zero-day attacks.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/cybersecuritynews.com\/chinese-hackers-weaponizes-software-vulnerabilities\/\" \/>\n<meta property=\"og:site_name\" content=\"Cyber Security News\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/Hackingtutorialsandnews\" \/>\n<meta property=\"article:published_time\" content=\"2025-07-29T14:42:35+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2025-07-29T14:42:41+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEg3X2IX6IBmqjBjM1kuEKGgRysYrqlJxa52UfDXqmkutjmPvALLn25XdxEMoAw63Bxnq2u8NUg0ylxc_y5PcyapqQAm3L3oTEwqPJ7DMxHTWQOzogHOtA_k3YKrla5r06lR5p-pa5C7c5Rf7eBYOpSXX56ZEd9e_MxAP0m1eVJbfnWecqUgUPFjRj5_Wgo\/s16000\/Chinese%20Hackers%20Weaponizes%20Software%20Vulnerabilities%20to%20Compromise%20Their%20Targets.webp\" \/><meta property=\"og:image\" content=\"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEg3X2IX6IBmqjBjM1kuEKGgRysYrqlJxa52UfDXqmkutjmPvALLn25XdxEMoAw63Bxnq2u8NUg0ylxc_y5PcyapqQAm3L3oTEwqPJ7DMxHTWQOzogHOtA_k3YKrla5r06lR5p-pa5C7c5Rf7eBYOpSXX56ZEd9e_MxAP0m1eVJbfnWecqUgUPFjRj5_Wgo\/s16000\/Chinese%20Hackers%20Weaponizes%20Software%20Vulnerabilities%20to%20Compromise%20Their%20Targets.webp\" \/>\n\t<meta property=\"og:image:width\" content=\"1600\" \/>\n\t<meta property=\"og:image:height\" content=\"900\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Tushar Subhra Dutta\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:image\" content=\"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEg3X2IX6IBmqjBjM1kuEKGgRysYrqlJxa52UfDXqmkutjmPvALLn25XdxEMoAw63Bxnq2u8NUg0ylxc_y5PcyapqQAm3L3oTEwqPJ7DMxHTWQOzogHOtA_k3YKrla5r06lR5p-pa5C7c5Rf7eBYOpSXX56ZEd9e_MxAP0m1eVJbfnWecqUgUPFjRj5_Wgo\/s16000\/Chinese%20Hackers%20Weaponizes%20Software%20Vulnerabilities%20to%20Compromise%20Their%20Targets.webp\" \/>\n<meta name=\"twitter:creator\" content=\"@The_Cyber_News\" \/>\n<meta name=\"twitter:site\" content=\"@The_Cyber_News\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Tushar Subhra Dutta\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Chinese Hackers Weaponizes Software Vulnerabilities to Compromise Their Targets","description":"Goujian Spider APT exploits pre-CVE flaws from China\u2019s NVDB, using REDSAM malware to target global firms with rapid zero-day attacks.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/cybersecuritynews.com\/chinese-hackers-weaponizes-software-vulnerabilities\/","og_locale":"en_US","og_type":"article","og_title":"Chinese Hackers Weaponizes Software Vulnerabilities to Compromise Their Targets","og_description":"Goujian Spider APT exploits pre-CVE flaws from China\u2019s NVDB, using REDSAM malware to target global firms with rapid zero-day attacks.","og_url":"https:\/\/cybersecuritynews.com\/chinese-hackers-weaponizes-software-vulnerabilities\/","og_site_name":"Cyber Security News","article_publisher":"https:\/\/www.facebook.com\/Hackingtutorialsandnews","article_published_time":"2025-07-29T14:42:35+00:00","article_modified_time":"2025-07-29T14:42:41+00:00","og_image":[{"url":"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEg3X2IX6IBmqjBjM1kuEKGgRysYrqlJxa52UfDXqmkutjmPvALLn25XdxEMoAw63Bxnq2u8NUg0ylxc_y5PcyapqQAm3L3oTEwqPJ7DMxHTWQOzogHOtA_k3YKrla5r06lR5p-pa5C7c5Rf7eBYOpSXX56ZEd9e_MxAP0m1eVJbfnWecqUgUPFjRj5_Wgo\/s16000\/Chinese%20Hackers%20Weaponizes%20Software%20Vulnerabilities%20to%20Compromise%20Their%20Targets.webp","type":"","width":"","height":""},{"width":1600,"height":900,"url":"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEg3X2IX6IBmqjBjM1kuEKGgRysYrqlJxa52UfDXqmkutjmPvALLn25XdxEMoAw63Bxnq2u8NUg0ylxc_y5PcyapqQAm3L3oTEwqPJ7DMxHTWQOzogHOtA_k3YKrla5r06lR5p-pa5C7c5Rf7eBYOpSXX56ZEd9e_MxAP0m1eVJbfnWecqUgUPFjRj5_Wgo\/s16000\/Chinese%20Hackers%20Weaponizes%20Software%20Vulnerabilities%20to%20Compromise%20Their%20Targets.webp","type":"image\/jpeg"}],"author":"Tushar Subhra Dutta","twitter_card":"summary_large_image","twitter_image":"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEg3X2IX6IBmqjBjM1kuEKGgRysYrqlJxa52UfDXqmkutjmPvALLn25XdxEMoAw63Bxnq2u8NUg0ylxc_y5PcyapqQAm3L3oTEwqPJ7DMxHTWQOzogHOtA_k3YKrla5r06lR5p-pa5C7c5Rf7eBYOpSXX56ZEd9e_MxAP0m1eVJbfnWecqUgUPFjRj5_Wgo\/s16000\/Chinese%20Hackers%20Weaponizes%20Software%20Vulnerabilities%20to%20Compromise%20Their%20Targets.webp","twitter_creator":"@The_Cyber_News","twitter_site":"@The_Cyber_News","twitter_misc":{"Written by":"Tushar Subhra Dutta","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"NewsArticle","@id":"https:\/\/cybersecuritynews.com\/chinese-hackers-weaponizes-software-vulnerabilities\/#article","isPartOf":{"@id":"https:\/\/cybersecuritynews.com\/chinese-hackers-weaponizes-software-vulnerabilities\/"},"author":{"name":"Tushar Subhra Dutta","@id":"https:\/\/cybersecuritynews.com\/#\/schema\/person\/7eb7d8d026aa5dd566f134d4def5c05c"},"headline":"Chinese Hackers Weaponizes Software Vulnerabilities to Compromise Their Targets","datePublished":"2025-07-29T14:42:35+00:00","dateModified":"2025-07-29T14:42:41+00:00","mainEntityOfPage":{"@id":"https:\/\/cybersecuritynews.com\/chinese-hackers-weaponizes-software-vulnerabilities\/"},"wordCount":596,"publisher":{"@id":"https:\/\/cybersecuritynews.com\/#organization"},"image":{"@id":"https:\/\/cybersecuritynews.com\/chinese-hackers-weaponizes-software-vulnerabilities\/#primaryimage"},"thumbnailUrl":"https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEg3X2IX6IBmqjBjM1kuEKGgRysYrqlJxa52UfDXqmkutjmPvALLn25XdxEMoAw63Bxnq2u8NUg0ylxc_y5PcyapqQAm3L3oTEwqPJ7DMxHTWQOzogHOtA_k3YKrla5r06lR5p-pa5C7c5Rf7eBYOpSXX56ZEd9e_MxAP0m1eVJbfnWecqUgUPFjRj5_Wgo\/s16000\/Chinese%20Hackers%20Weaponizes%20Software%20Vulnerabilities%20to%20Compromise%20Their%20Targets.webp?w=1600&resize=1600,900&ssl=1","keywords":["cyber security","cyber security news"],"articleSection":["Cyber Security News","Threats"],"inLanguage":"en-US","copyrightYear":"2025","copyrightHolder":{"@id":"https:\/\/cybersecuritynews.com\/#organization"}},{"@type":"WebPage","@id":"https:\/\/cybersecuritynews.com\/chinese-hackers-weaponizes-software-vulnerabilities\/","url":"https:\/\/cybersecuritynews.com\/chinese-hackers-weaponizes-software-vulnerabilities\/","name":"Chinese Hackers Weaponizes Software Vulnerabilities to Compromise Their Targets","isPartOf":{"@id":"https:\/\/cybersecuritynews.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/cybersecuritynews.com\/chinese-hackers-weaponizes-software-vulnerabilities\/#primaryimage"},"image":{"@id":"https:\/\/cybersecuritynews.com\/chinese-hackers-weaponizes-software-vulnerabilities\/#primaryimage"},"thumbnailUrl":"https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEg3X2IX6IBmqjBjM1kuEKGgRysYrqlJxa52UfDXqmkutjmPvALLn25XdxEMoAw63Bxnq2u8NUg0ylxc_y5PcyapqQAm3L3oTEwqPJ7DMxHTWQOzogHOtA_k3YKrla5r06lR5p-pa5C7c5Rf7eBYOpSXX56ZEd9e_MxAP0m1eVJbfnWecqUgUPFjRj5_Wgo\/s16000\/Chinese%20Hackers%20Weaponizes%20Software%20Vulnerabilities%20to%20Compromise%20Their%20Targets.webp?w=1600&resize=1600,900&ssl=1","datePublished":"2025-07-29T14:42:35+00:00","dateModified":"2025-07-29T14:42:41+00:00","description":"Goujian Spider APT exploits pre-CVE flaws from China\u2019s NVDB, using REDSAM malware to target global firms with rapid zero-day attacks.","breadcrumb":{"@id":"https:\/\/cybersecuritynews.com\/chinese-hackers-weaponizes-software-vulnerabilities\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/cybersecuritynews.com\/chinese-hackers-weaponizes-software-vulnerabilities\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/cybersecuritynews.com\/chinese-hackers-weaponizes-software-vulnerabilities\/#primaryimage","url":"https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEg3X2IX6IBmqjBjM1kuEKGgRysYrqlJxa52UfDXqmkutjmPvALLn25XdxEMoAw63Bxnq2u8NUg0ylxc_y5PcyapqQAm3L3oTEwqPJ7DMxHTWQOzogHOtA_k3YKrla5r06lR5p-pa5C7c5Rf7eBYOpSXX56ZEd9e_MxAP0m1eVJbfnWecqUgUPFjRj5_Wgo\/s16000\/Chinese%20Hackers%20Weaponizes%20Software%20Vulnerabilities%20to%20Compromise%20Their%20Targets.webp?w=1600&resize=1600,900&ssl=1","contentUrl":"https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEg3X2IX6IBmqjBjM1kuEKGgRysYrqlJxa52UfDXqmkutjmPvALLn25XdxEMoAw63Bxnq2u8NUg0ylxc_y5PcyapqQAm3L3oTEwqPJ7DMxHTWQOzogHOtA_k3YKrla5r06lR5p-pa5C7c5Rf7eBYOpSXX56ZEd9e_MxAP0m1eVJbfnWecqUgUPFjRj5_Wgo\/s16000\/Chinese%20Hackers%20Weaponizes%20Software%20Vulnerabilities%20to%20Compromise%20Their%20Targets.webp?w=1600&resize=1600,900&ssl=1","width":"1600","height":"900"},{"@type":"BreadcrumbList","@id":"https:\/\/cybersecuritynews.com\/chinese-hackers-weaponizes-software-vulnerabilities\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/cybersecuritynews.com\/"},{"@type":"ListItem","position":2,"name":"Chinese Hackers Weaponizes Software Vulnerabilities to Compromise Their Targets"}]},{"@type":"WebSite","@id":"https:\/\/cybersecuritynews.com\/#website","url":"https:\/\/cybersecuritynews.com\/","name":"Cyber Security News","description":"World's #1 Premier Cybersecurity and Hacking News Portal","publisher":{"@id":"https:\/\/cybersecuritynews.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/cybersecuritynews.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/cybersecuritynews.com\/#organization","name":"Cyber Security News","url":"https:\/\/cybersecuritynews.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/cybersecuritynews.com\/#\/schema\/logo\/image\/","url":"https:\/\/cybersecuritynews.com\/wp-content\/uploads\/2021\/06\/Cyber-security.jpg","contentUrl":"https:\/\/cybersecuritynews.com\/wp-content\/uploads\/2021\/06\/Cyber-security.jpg","width":200,"height":200,"caption":"Cyber Security News"},"image":{"@id":"https:\/\/cybersecuritynews.com\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/Hackingtutorialsandnews","https:\/\/x.com\/The_Cyber_News","https:\/\/www.linkedin.com\/company\/cybersecurity-news\/"]},{"@type":"Person","@id":"https:\/\/cybersecuritynews.com\/#\/schema\/person\/7eb7d8d026aa5dd566f134d4def5c05c","name":"Tushar Subhra Dutta","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/cybersecuritynews.com\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/f8bc0247220c7d4dea6c8b5a77d910613305ead17b13c2a7920b400435a848dd?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/f8bc0247220c7d4dea6c8b5a77d910613305ead17b13c2a7920b400435a848dd?s=96&d=mm&r=g","caption":"Tushar Subhra Dutta"},"description":"Tushar is a senior cybersecurity and breach reporter. He specializes in covering cybersecurity news, trends, and emerging threats, data breaches, and malware attacks. With years of experience, he brings clarity and depth to complex security topics.","url":"https:\/\/cybersecuritynews.com\/author\/tushar\/"}]}},"jetpack_featured_media_url":"https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEg3X2IX6IBmqjBjM1kuEKGgRysYrqlJxa52UfDXqmkutjmPvALLn25XdxEMoAw63Bxnq2u8NUg0ylxc_y5PcyapqQAm3L3oTEwqPJ7DMxHTWQOzogHOtA_k3YKrla5r06lR5p-pa5C7c5Rf7eBYOpSXX56ZEd9e_MxAP0m1eVJbfnWecqUgUPFjRj5_Wgo\/s16000\/Chinese%20Hackers%20Weaponizes%20Software%20Vulnerabilities%20to%20Compromise%20Their%20Targets.webp?w=1600&resize=1600,900&ssl=1","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/posts\/118584","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/users\/6"}],"replies":[{"embeddable":true,"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/comments?post=118584"}],"version-history":[{"count":1,"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/posts\/118584\/revisions"}],"predecessor-version":[{"id":118586,"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/posts\/118584\/revisions\/118586"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/media\/118587"}],"wp:attachment":[{"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/media?parent=118584"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/categories?post=118584"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/tags?post=118584"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}