{
  "$type": "site.standard.document",
  "bskyPostRef": {
    "cid": "bafyreifez6fhvsvai6jbcnvqq26jaimphchtsxj35g2jtw5a2xec5zt2ya",
    "uri": "at://did:plc:iir655mcoipvnewhnkv6fb3u/app.bsky.feed.post/3mofsk4qpi4t2"
  },
  "coverImage": {
    "$type": "blob",
    "ref": {
      "$link": "bafkreig5ckjzbmqqj5s62wilfjm6xmeghhkjautgwstl6e3yzt7gd5anjq"
    },
    "mimeType": "image/webp",
    "size": 38634
  },
  "path": "/unc6508-china-steals-gmail-data/",
  "publishedAt": "2026-06-16T11:10:23.000Z",
  "site": "https://thecyberexpress.com",
  "textContent": "\nThe attackers, tracked as \"UNC6508,\" did not write new malware to steal emails. They created an administrator rule inside Google Workspace, named it \"Patroit\"",
  "title": "China Spent Over a Year Inside U.S. Medical Research Networks — And Used Google’s Own Email Rules to Steal Data"
}