{"id":6674,"date":"2021-07-22T12:37:40","date_gmt":"2021-07-22T19:37:40","guid":{"rendered":"https:\/\/blogs.infoblox.com\/?p=6674"},"modified":"2024-04-26T13:20:29","modified_gmt":"2024-04-26T20:20:29","slug":"adult-themed-mimail-worm-campaign-steals-victim-information","status":"publish","type":"post","link":"https:\/\/www.infoblox.com\/blog\/threat-intelligence\/adult-themed-mimail-worm-campaign-steals-victim-information\/","title":{"rendered":"Adult-Themed Mimail Worm Campaign Steals Victim Information"},"content":{"rendered":"<h3><strong>Author: Avinash Shende<\/strong><\/h3>\n<h3><strong>TLP: WHITE<\/strong><\/h3>\n<p>On 13 July, Infoblox observed a malicious email campaign that has been distributing the Mimail worm via weaponized executable files. Emails in this campaign try to lure victims into opening attachments that appear to be images of sexual nature.<\/p>\n<p>Mimail emerged some 18 years ago (August 2003<sup>1<\/sup>) and has spawned many variants. Here it continues to be used to steal financial and sensitive data.<\/p>\n<p>When we analyzed the malware, we also found a warning against attempts to filter out the emails, and a threat that entities that did so would receive a future denial of service (DoS) attack. However, we did not find this variant of the malware to have the capability to do so.<\/p>\n<p>Mimail variants contain payloads that can steal credit card information and credentials from web browsers and via a fake license expiry form.<sup>2<\/sup> As a mass mailing worm, it propagates by distributing itself to victims&#8217; email contacts.<\/p>\n<p>While reverse engineering the executable, we found the warning below.<\/p>\n<p><em>\u00a0<\/em><em>*** GLOBAL WARNING: if any free email company or hosting company will close\/filter my email\/site accounts, it will be DDoS&#8217;ed in next version. WARNING: centrum.cz will be DDoS&#8217;ed in next versions, coz they have closed my mimail-email account. Who next? ***<\/em><\/p>\n<p>We cannot confirm whether the DDoS threat is real because we found no evidence in the sample that it had the ability to carry out a DoS attack. However, according to F-Secure, there is a variant: Mimail.G, which does have a DoS capability.<sup>3<\/sup><\/p>\n<p>A typical email in this campaign urges users to open an adult-themed executable attachment that has a deceptive double extension: <em>.gif.exe<\/em>. The bodies of the emails in this campaign were blank.<\/p>\n<p>The emails\u2019 subject lines are similar to one of the following:<\/p>\n<ul>\n<li>Re[4]: sexy pics<\/li>\n<li>Re:sexy photos<\/li>\n<li>cool pictures<\/li>\n<li>smart pics<\/li>\n<li>beautiful pics<\/li>\n<li>sexy pics FOR YOU ONLY<\/li>\n<li>very wonderful pictures PRIVATE<\/li>\n<\/ul>\n<p>Infoblox\u2019s full report on this campaign will be available soon on our<a href=\"https:\/\/insights.infoblox.com\/threat-intelligence-reports\"> Threat Intelligence Reports<\/a> page.<\/p>\n<h3><strong>Endnotes<\/strong><\/h3>\n<ol>\n<li><a href=\"https:\/\/malwiki.org\/index.php?title=Mimail\">https:\/\/malwiki.org\/index.php?title=Mimail<\/a><\/li>\n<li><a href=\"https:\/\/www.f-secure.com\/v-descs\/mimail.shtml\">https:\/\/www.f-secure.com\/v-descs\/mimail.shtml<\/a><\/li>\n<li><a href=\"https:\/\/www.f-secure.com\/v-descs\/mimail_g.shtml\">https:\/\/www.f-secure.com\/v-descs\/mimail_g.shtml<\/a><\/li>\n<\/ol>\n<p>&nbsp;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Author: Avinash Shende TLP: WHITE On 13 July, Infoblox observed a malicious email campaign that has been distributing the Mimail worm via weaponized executable files. Emails in this campaign try to lure victims into opening attachments that appear to be images of sexual nature. Mimail emerged some 18 years ago (August 20031) and has spawned [&hellip;]<\/p>\n","protected":false},"author":397,"featured_media":5040,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"inline_featured_image":false,"_genesis_hide_title":false,"_genesis_hide_breadcrumbs":false,"_genesis_hide_singular_image":false,"_genesis_hide_footer_widgets":false,"_genesis_custom_body_class":"","_genesis_custom_post_class":"","_genesis_layout":"","footnotes":""},"categories":[254],"tags":[532,533,531],"class_list":{"0":"post-6674","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-threat-intelligence","8":"tag-cybertattack","9":"tag-mimail","10":"tag-worm","11":"entry"},"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v27.3 (Yoast SEO v27.3) - https:\/\/yoast.com\/product\/yoast-seo-premium-wordpress\/ -->\n<title>Adult-Themed Mimail Worm Campaign Steals Victim Information<\/title>\n<meta name=\"description\" content=\"Adult-Themed Mimail Worm Campaign Steals Victim Information. On 13 July, Infoblox observed a malicious email campaign that has been distributing the Mimail worm via weaponized executable files. Emails in this campaign try to lure victims into opening attachments that appear to be images of sexual nature.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.infoblox.com\/blog\/threat-intelligence\/adult-themed-mimail-worm-campaign-steals-victim-information\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Adult-Themed Mimail Worm Campaign Steals Victim Information\" \/>\n<meta property=\"og:description\" content=\"Adult-Themed Mimail Worm Campaign Steals Victim Information. On 13 July, Infoblox observed a malicious email campaign that has been distributing the Mimail worm via weaponized executable files. Emails in this campaign try to lure victims into opening attachments that appear to be images of sexual nature.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.infoblox.com\/blog\/threat-intelligence\/adult-themed-mimail-worm-campaign-steals-victim-information\/\" \/>\n<meta property=\"og:site_name\" content=\"Infoblox Blog\" \/>\n<meta property=\"article:published_time\" content=\"2021-07-22T19:37:40+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2024-04-26T20:20:29+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.infoblox.com\/blog\/wp-content\/uploads\/secure-dns-security-beyond-the-vpn.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"725\" \/>\n\t<meta property=\"og:image:height\" content=\"483\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Infoblox Threat Intel\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Infoblox Threat Intel\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/threat-intelligence\\\/adult-themed-mimail-worm-campaign-steals-victim-information\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/threat-intelligence\\\/adult-themed-mimail-worm-campaign-steals-victim-information\\\/\"},\"author\":{\"name\":\"Infoblox Threat Intel\",\"@id\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/#\\\/schema\\\/person\\\/b6aed8965e3298a0817c16d32c0a67ae\"},\"headline\":\"Adult-Themed Mimail Worm Campaign Steals Victim Information\",\"datePublished\":\"2021-07-22T19:37:40+00:00\",\"dateModified\":\"2024-04-26T20:20:29+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/threat-intelligence\\\/adult-themed-mimail-worm-campaign-steals-victim-information\\\/\"},\"wordCount\":363,\"publisher\":{\"@id\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/threat-intelligence\\\/adult-themed-mimail-worm-campaign-steals-victim-information\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/wp-content\\\/uploads\\\/secure-dns-security-beyond-the-vpn.jpg\",\"keywords\":[\"cybertattack\",\"Mimail\",\"worm\"],\"articleSection\":[\"Infoblox Threat Intel\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/threat-intelligence\\\/adult-themed-mimail-worm-campaign-steals-victim-information\\\/\",\"url\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/threat-intelligence\\\/adult-themed-mimail-worm-campaign-steals-victim-information\\\/\",\"name\":\"Adult-Themed Mimail Worm Campaign Steals Victim Information\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/threat-intelligence\\\/adult-themed-mimail-worm-campaign-steals-victim-information\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/threat-intelligence\\\/adult-themed-mimail-worm-campaign-steals-victim-information\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/wp-content\\\/uploads\\\/secure-dns-security-beyond-the-vpn.jpg\",\"datePublished\":\"2021-07-22T19:37:40+00:00\",\"dateModified\":\"2024-04-26T20:20:29+00:00\",\"description\":\"Adult-Themed Mimail Worm Campaign Steals Victim Information. On 13 July, Infoblox observed a malicious email campaign that has been distributing the Mimail worm via weaponized executable files. Emails in this campaign try to lure victims into opening attachments that appear to be images of sexual nature.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/threat-intelligence\\\/adult-themed-mimail-worm-campaign-steals-victim-information\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/threat-intelligence\\\/adult-themed-mimail-worm-campaign-steals-victim-information\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/threat-intelligence\\\/adult-themed-mimail-worm-campaign-steals-victim-information\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/wp-content\\\/uploads\\\/secure-dns-security-beyond-the-vpn.jpg\",\"contentUrl\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/wp-content\\\/uploads\\\/secure-dns-security-beyond-the-vpn.jpg\",\"width\":725,\"height\":483},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/threat-intelligence\\\/adult-themed-mimail-worm-campaign-steals-victim-information\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Infoblox Threat Intel\",\"item\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/category\\\/threat-intelligence\\\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Adult-Themed Mimail Worm Campaign Steals Victim Information\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/\",\"name\":\"infoblox.com\\\/blog\\\/\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/#organization\",\"name\":\"Infoblox\",\"url\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/wp-content\\\/uploads\\\/infoblox-logo-2.svg\",\"contentUrl\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/wp-content\\\/uploads\\\/infoblox-logo-2.svg\",\"width\":137,\"height\":30,\"caption\":\"Infoblox\"},\"image\":{\"@id\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/#\\\/schema\\\/person\\\/b6aed8965e3298a0817c16d32c0a67ae\",\"name\":\"Infoblox Threat Intel\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/blogs.infoblox.com\\\/wp-content\\\/uploads\\\/avatar_user_397_1714162589-96x96.png\",\"url\":\"https:\\\/\\\/blogs.infoblox.com\\\/wp-content\\\/uploads\\\/avatar_user_397_1714162589-96x96.png\",\"contentUrl\":\"https:\\\/\\\/blogs.infoblox.com\\\/wp-content\\\/uploads\\\/avatar_user_397_1714162589-96x96.png\",\"caption\":\"Infoblox Threat Intel\"},\"description\":\"Infoblox Threat Intel is the leading creator of original DNS threat intelligence, distinguishing itself in a sea of aggregators. What sets us apart? Two things: mad DNS skills and unparalleled visibility. DNS is notoriously tricky to interpret and hunt from, but our deep understanding and unique access to the internet's inner workings allow us to track down threat actors that others can't see. We're proactive, not just defensive, using our insights to disrupt cybercrime where it begins. We also believe in sharing knowledge to support the broader security community by publishing detailed research and releasing indicators on GitHub. In addition, our intel is seamlessly integrated into our Infoblox Protective DNS solutions, so customers automatically get its benefits, along with ridiculously low false positive rates.\",\"url\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/author\\\/infoblox-threat-intel\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Adult-Themed Mimail Worm Campaign Steals Victim Information","description":"Adult-Themed Mimail Worm Campaign Steals Victim Information. On 13 July, Infoblox observed a malicious email campaign that has been distributing the Mimail worm via weaponized executable files. Emails in this campaign try to lure victims into opening attachments that appear to be images of sexual nature.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.infoblox.com\/blog\/threat-intelligence\/adult-themed-mimail-worm-campaign-steals-victim-information\/","og_locale":"en_US","og_type":"article","og_title":"Adult-Themed Mimail Worm Campaign Steals Victim Information","og_description":"Adult-Themed Mimail Worm Campaign Steals Victim Information. On 13 July, Infoblox observed a malicious email campaign that has been distributing the Mimail worm via weaponized executable files. Emails in this campaign try to lure victims into opening attachments that appear to be images of sexual nature.","og_url":"https:\/\/www.infoblox.com\/blog\/threat-intelligence\/adult-themed-mimail-worm-campaign-steals-victim-information\/","og_site_name":"Infoblox Blog","article_published_time":"2021-07-22T19:37:40+00:00","article_modified_time":"2024-04-26T20:20:29+00:00","og_image":[{"width":725,"height":483,"url":"https:\/\/www.infoblox.com\/blog\/wp-content\/uploads\/secure-dns-security-beyond-the-vpn.jpg","type":"image\/jpeg"}],"author":"Infoblox Threat Intel","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Infoblox Threat Intel","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.infoblox.com\/blog\/threat-intelligence\/adult-themed-mimail-worm-campaign-steals-victim-information\/#article","isPartOf":{"@id":"https:\/\/www.infoblox.com\/blog\/threat-intelligence\/adult-themed-mimail-worm-campaign-steals-victim-information\/"},"author":{"name":"Infoblox Threat Intel","@id":"https:\/\/www.infoblox.com\/blog\/#\/schema\/person\/b6aed8965e3298a0817c16d32c0a67ae"},"headline":"Adult-Themed Mimail Worm Campaign Steals Victim Information","datePublished":"2021-07-22T19:37:40+00:00","dateModified":"2024-04-26T20:20:29+00:00","mainEntityOfPage":{"@id":"https:\/\/www.infoblox.com\/blog\/threat-intelligence\/adult-themed-mimail-worm-campaign-steals-victim-information\/"},"wordCount":363,"publisher":{"@id":"https:\/\/www.infoblox.com\/blog\/#organization"},"image":{"@id":"https:\/\/www.infoblox.com\/blog\/threat-intelligence\/adult-themed-mimail-worm-campaign-steals-victim-information\/#primaryimage"},"thumbnailUrl":"https:\/\/www.infoblox.com\/blog\/wp-content\/uploads\/secure-dns-security-beyond-the-vpn.jpg","keywords":["cybertattack","Mimail","worm"],"articleSection":["Infoblox Threat Intel"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.infoblox.com\/blog\/threat-intelligence\/adult-themed-mimail-worm-campaign-steals-victim-information\/","url":"https:\/\/www.infoblox.com\/blog\/threat-intelligence\/adult-themed-mimail-worm-campaign-steals-victim-information\/","name":"Adult-Themed Mimail Worm Campaign Steals Victim Information","isPartOf":{"@id":"https:\/\/www.infoblox.com\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.infoblox.com\/blog\/threat-intelligence\/adult-themed-mimail-worm-campaign-steals-victim-information\/#primaryimage"},"image":{"@id":"https:\/\/www.infoblox.com\/blog\/threat-intelligence\/adult-themed-mimail-worm-campaign-steals-victim-information\/#primaryimage"},"thumbnailUrl":"https:\/\/www.infoblox.com\/blog\/wp-content\/uploads\/secure-dns-security-beyond-the-vpn.jpg","datePublished":"2021-07-22T19:37:40+00:00","dateModified":"2024-04-26T20:20:29+00:00","description":"Adult-Themed Mimail Worm Campaign Steals Victim Information. On 13 July, Infoblox observed a malicious email campaign that has been distributing the Mimail worm via weaponized executable files. Emails in this campaign try to lure victims into opening attachments that appear to be images of sexual nature.","breadcrumb":{"@id":"https:\/\/www.infoblox.com\/blog\/threat-intelligence\/adult-themed-mimail-worm-campaign-steals-victim-information\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.infoblox.com\/blog\/threat-intelligence\/adult-themed-mimail-worm-campaign-steals-victim-information\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.infoblox.com\/blog\/threat-intelligence\/adult-themed-mimail-worm-campaign-steals-victim-information\/#primaryimage","url":"https:\/\/www.infoblox.com\/blog\/wp-content\/uploads\/secure-dns-security-beyond-the-vpn.jpg","contentUrl":"https:\/\/www.infoblox.com\/blog\/wp-content\/uploads\/secure-dns-security-beyond-the-vpn.jpg","width":725,"height":483},{"@type":"BreadcrumbList","@id":"https:\/\/www.infoblox.com\/blog\/threat-intelligence\/adult-themed-mimail-worm-campaign-steals-victim-information\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.infoblox.com\/blog\/"},{"@type":"ListItem","position":2,"name":"Infoblox Threat Intel","item":"https:\/\/www.infoblox.com\/blog\/category\/threat-intelligence\/"},{"@type":"ListItem","position":3,"name":"Adult-Themed Mimail Worm Campaign Steals Victim Information"}]},{"@type":"WebSite","@id":"https:\/\/www.infoblox.com\/blog\/#website","url":"https:\/\/www.infoblox.com\/blog\/","name":"infoblox.com\/blog\/","description":"","publisher":{"@id":"https:\/\/www.infoblox.com\/blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.infoblox.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.infoblox.com\/blog\/#organization","name":"Infoblox","url":"https:\/\/www.infoblox.com\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.infoblox.com\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.infoblox.com\/blog\/wp-content\/uploads\/infoblox-logo-2.svg","contentUrl":"https:\/\/www.infoblox.com\/blog\/wp-content\/uploads\/infoblox-logo-2.svg","width":137,"height":30,"caption":"Infoblox"},"image":{"@id":"https:\/\/www.infoblox.com\/blog\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/www.infoblox.com\/blog\/#\/schema\/person\/b6aed8965e3298a0817c16d32c0a67ae","name":"Infoblox Threat Intel","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/blogs.infoblox.com\/wp-content\/uploads\/avatar_user_397_1714162589-96x96.png","url":"https:\/\/blogs.infoblox.com\/wp-content\/uploads\/avatar_user_397_1714162589-96x96.png","contentUrl":"https:\/\/blogs.infoblox.com\/wp-content\/uploads\/avatar_user_397_1714162589-96x96.png","caption":"Infoblox Threat Intel"},"description":"Infoblox Threat Intel is the leading creator of original DNS threat intelligence, distinguishing itself in a sea of aggregators. What sets us apart? Two things: mad DNS skills and unparalleled visibility. DNS is notoriously tricky to interpret and hunt from, but our deep understanding and unique access to the internet's inner workings allow us to track down threat actors that others can't see. We're proactive, not just defensive, using our insights to disrupt cybercrime where it begins. We also believe in sharing knowledge to support the broader security community by publishing detailed research and releasing indicators on GitHub. In addition, our intel is seamlessly integrated into our Infoblox Protective DNS solutions, so customers automatically get its benefits, along with ridiculously low false positive rates.","url":"https:\/\/www.infoblox.com\/blog\/author\/infoblox-threat-intel\/"}]}},"_links":{"self":[{"href":"https:\/\/www.infoblox.com\/blog\/wp-json\/wp\/v2\/posts\/6674","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.infoblox.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.infoblox.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.infoblox.com\/blog\/wp-json\/wp\/v2\/users\/397"}],"replies":[{"embeddable":true,"href":"https:\/\/www.infoblox.com\/blog\/wp-json\/wp\/v2\/comments?post=6674"}],"version-history":[{"count":1,"href":"https:\/\/www.infoblox.com\/blog\/wp-json\/wp\/v2\/posts\/6674\/revisions"}],"predecessor-version":[{"id":6675,"href":"https:\/\/www.infoblox.com\/blog\/wp-json\/wp\/v2\/posts\/6674\/revisions\/6675"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.infoblox.com\/blog\/wp-json\/wp\/v2\/media\/5040"}],"wp:attachment":[{"href":"https:\/\/www.infoblox.com\/blog\/wp-json\/wp\/v2\/media?parent=6674"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.infoblox.com\/blog\/wp-json\/wp\/v2\/categories?post=6674"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.infoblox.com\/blog\/wp-json\/wp\/v2\/tags?post=6674"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}