{
  "$type": "site.standard.document",
  "bskyPostRef": {
    "cid": "bafyreidgm2zloiirlkxhknht4mgkibx4an4jvk3fn63zgfwbqiqzlchske",
    "uri": "at://did:plc:6wtxqaikjf62unmnajbfbq5v/app.bsky.feed.post/3mmi22tgf73u2"
  },
  "coverImage": {
    "$type": "blob",
    "ref": {
      "$link": "bafkreigcodz47otfeu5otrlcovzqif4yuz4kdc4zealfl4df6mnxoabs7e"
    },
    "mimeType": "image/webp",
    "size": 55668
  },
  "path": "/graphworm-malware-uses-microsoft-onedrive-to-hide-its-command-traffic/",
  "publishedAt": "2026-05-22T16:34:53.000Z",
  "site": "https://vpncentral.com",
  "tags": [
    "News",
    "GraphWorm Malware Uses Microsoft OneDrive to Hide Its Command Traffic",
    "VPN Central"
  ],
  "textContent": "Security researchers have uncovered a new backdoor called GraphWorm that uses Microsoft OneDrive as part of its command-and-control system. The malware belongs to Webworm, a China-aligned cyber-espionage group that has continued to refresh its toolkit and move toward stealthier cloud-based tactics. The main concern is simple: GraphWorm does not rely on an obviously suspicious server […]\n\nThe post GraphWorm Malware Uses Microsoft OneDrive to Hide Its Command Traffic appeared first on VPN Central.",
  "title": "GraphWorm Malware Uses Microsoft OneDrive to Hide Its Command Traffic"
}