{"id":10869,"date":"2017-01-23T00:00:00","date_gmt":"2017-01-23T00:00:00","guid":{"rendered":"http:\/\/localhost\/cyber-operations\/greenbug\/"},"modified":"2017-01-23T00:00:00","modified_gmt":"2017-01-23T00:00:00","slug":"greenbug","status":"publish","type":"post","link":"https:\/\/www.cfr.org\/cyber-operations\/greenbug","title":{"rendered":"Greenbug"},"content":{"rendered":"<p>Greenbug is believed to be an Iranian threat actor with ties to the group behind the Shamoon malware. It has previously used off-the-shelf tools and living-off-the-land techniques to gain access to South Asian telecommunication companies\u2019 servers. It has also used custom remote access trojans (RAT) to steal information and credentials from Middle Eastern targets.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Greenbug is believed to be an Iranian threat actor with ties to the group behind the Shamoon malware. It has previously used off-the-shelf tools and living-off-the-land techniques to gain access to South Asian telecommunication companies\u2019 servers. It has also used custom remote access trojans (RAT) to steal information and credentials from Middle Eastern targets.<\/p>\n","protected":false},"author":3,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"_cloudinary_featured_overwrite":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_feature_clip_id":0,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_post_was_ever_published":false},"categories":[3],"tags":[],"cyber_operation":[],"state_sponsor":[76],"victim_category":[],"victim_government_response":[],"victim":[],"class_list":["post-10869","post","type-post","status-publish","format-standard","hentry","category-threat-actor","state_sponsor-iran-islamic-republic-of"],"acf":[],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/www.cfr.org\/cyber-operations\/wp-json\/wp\/v2\/posts\/10869","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.cfr.org\/cyber-operations\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.cfr.org\/cyber-operations\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.cfr.org\/cyber-operations\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/www.cfr.org\/cyber-operations\/wp-json\/wp\/v2\/comments?post=10869"}],"version-history":[{"count":0,"href":"https:\/\/www.cfr.org\/cyber-operations\/wp-json\/wp\/v2\/posts\/10869\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.cfr.org\/cyber-operations\/wp-json\/wp\/v2\/media?parent=10869"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.cfr.org\/cyber-operations\/wp-json\/wp\/v2\/categories?post=10869"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.cfr.org\/cyber-operations\/wp-json\/wp\/v2\/tags?post=10869"},{"taxonomy":"cyber_operation","embeddable":true,"href":"https:\/\/www.cfr.org\/cyber-operations\/wp-json\/wp\/v2\/cyber_operation?post=10869"},{"taxonomy":"state_sponsor","embeddable":true,"href":"https:\/\/www.cfr.org\/cyber-operations\/wp-json\/wp\/v2\/state_sponsor?post=10869"},{"taxonomy":"victim_category","embeddable":true,"href":"https:\/\/www.cfr.org\/cyber-operations\/wp-json\/wp\/v2\/victim_category?post=10869"},{"taxonomy":"victim_government_response","embeddable":true,"href":"https:\/\/www.cfr.org\/cyber-operations\/wp-json\/wp\/v2\/victim_government_response?post=10869"},{"taxonomy":"victim","embeddable":true,"href":"https:\/\/www.cfr.org\/cyber-operations\/wp-json\/wp\/v2\/victim?post=10869"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}