{"id":16894,"date":"2020-07-25T16:58:15","date_gmt":"2020-07-25T08:58:15","guid":{"rendered":"https:\/\/version-2.com\/?p=16894"},"modified":"2022-03-07T14:50:50","modified_gmt":"2022-03-07T06:50:50","slug":"sigred-a-wormable-microsoft-dns-server-rce-vulnerability","status":"publish","type":"post","link":"https:\/\/version-2.com\/zh\/2020\/07\/sigred-a-wormable-microsoft-dns-server-rce-vulnerability\/","title":{"rendered":"SigRed: A Wormable Microsoft DNS Server RCE Vulnerability"},"content":{"rendered":"\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t\t
\n\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

\"\"<\/h1>\n

SigRed Overview<\/h1>\n

SigRed is a vulnerability that was exposed yesterday (July 14th 2020) by the security firm Check Point. Successful exploitation of the vulnerability could lead to a malicious actor gaining control of the organizational DNS server, often leading in turn to domain administrator privileges, allowing the attacker complete control of any domain-joined Windows machine.<\/p>\n

The vulnerability lies in Microsoft\u2019s DNS server and could be triggered from either inside the network, by an attacker controlling an internal asset, or, in some conditions (as stated below), from\u00a0outside the network<\/strong>, making it even more dangerous.<\/p>\n

As Microsoft Active Directory is deeply integrated with DNS services, the DNS service is virtually always enabled on domain controllers. An attacker gaining control of a domain controller through the DNS service could lead to a complete compromise of the network, allowing the attacker complete access to all Windows machines joined to the domain, whether patched or not, using the domain administrator privileges of the compromised domain controller. Even if the compromised DNS server does not serve as a domain controller, It is likely that the Domain administrator credentials are stored locally and can be retrieved by a tool such as Mimikaktz. Furthermore, the attacker is also able to return custom responses to DNS, allowing man-in-the-middle for unencrypted protocols, such as HTTP, FTP and others.<\/p>\n

Exploitation Methods<\/h1>\n

The precondition for this exploit is that the local organization\u2019s DNS server is configured to recursively resolve queries to external domains using root-hints.\u00a0This configuration is the default configuration when the DNS service is installed.<\/strong><\/p>\n

Exploitation is either impossible or further complicated in the following cases:<\/p>\n

    \n
  1. The DNS server is an authoritative server of a DNS zone and does not recursively resolve queries to other domains.<\/li>\n
  2. The DNS server is part of an independent DNS infrastructure, such as an air-gapped network. In such a case, the attacker will need either write access to the DNS server or existing control over an authoritative DNS server serving an arbitrary zone on the network.<\/li>\n
  3. The DNS server is configured to use a forwarder server (such as 8.8.8.8 or 1.1.1.1) instead of directly using root hints. In such a case, the attacker will need to propagate the attack through the chain of recursive calls, which has not yet proven possible but cannot be completely discarded.<\/li>\n<\/ol>\n

    The vulnerability can be exploited in two ways:<\/p>\n

      \n
    1. From inside the network:<\/strong>
      An attacker that has a hold of an asset inside the network, can compromise the organization\u2019s local DNS server by sending queries for external domain records which are controlled by the attacker (e.g. http:\/\/www.evil.com<\/a>). Such a request will cause the local DNS server to communicate directly with the attacker\u2019s DNS server. A malicious crafted response from the attacker\u2019s server could lead the attacker to compromise the local DNS server.<\/li>\n
    2. From outside the network:<\/strong>
      An attacker can send a malicious link to a user inside the network to a website it controls (via e-mail, for example). Once the user opens the link\u00a0in either Microsoft Edge Legacy or Internet Explorer (does not apply to Google Chrome, Mozilla Firefox or Microsoft Edge Chromium, not tested on other browsers),\u00a0<\/strong>a malicious web page is sent back to the client that causes the client itself to perform a series of DNS queries to the local organization\u2019s DNS server, that in turn, would query the attacker\u2019s DNS server, at which point the DNS server can be compromised in the same manner as presented above.<\/li>\n<\/ol>\n

      \u00a0<\/p>\n

      Exploitability in OT Networks<\/h1>\n

      Most OT networks have Windows endpoints that are used for process control, technical maintenance and others. An attacker successfully exploiting this vulnerability\u00a0from either inside or outside the network\u00a0<\/strong>can gain domain administrator privileges, allowing full access to all domain-joined workstations and servers even if already patched.
      At this point, the attacker will be able to install ransomware, malware, steal information, disrupt OT operations and\/or access any machine in the domain for any purpose.<\/p>\n

      As many OT networks are slower to patch systems than IT networks, they are exposed for a longer period of time, allowing attackers to exploit this vulnerability. As a successful exploitation often results in domain administrator privileges, a single unpatched DNS server is sufficient to compromise the entire network, even if all other DNS servers are already patched.<\/p>\n

      Mitigation Recommendations<\/h1>\n

      Microsoft has released a patch (July 14th 2020) to the vulnerability. We urge everyone to update their Microsoft Windows Servers as soon as possible.<\/p>\n

      If for any reason one is unable to currently patch its Windows Servers, running the following command would limit the DNS response size to 0xFF00 (65280), and will prevent the vulnerability from running<\/p>\n

      \u00a0<\/p>\n

      reg add\u00a0<\/i>“HKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Services\\DNS\\Parameters”<\/i>\u00a0\/<\/i>v\u00a0<\/i>“TcpReceivePacketSize”<\/i>\u00a0\/t REG_DWORD \/d\u00a0<\/i>0xFF00<\/i>\u00a0\/f &&\u00a0<\/i>net stop DNS\u00a0<\/i>&&<\/i>\u00a0net start DNS<\/i><\/p>\n

      <\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t

      \n\t\t\t\t\t\t
      \n\t\t\t\t\t
      \n\t\t\t
      \n\t\t\t\t\t\t
      \n\t\t\t\t
      \n\t\t\t\t\t\t\t
      \t\t
      \n\t\t\t\t\t\t
      \n\t\t\t\t\t\t
      \n\t\t\t\t\t
      \n\t\t\t
      \n\t\t\t\t\t\t
      \n\t\t\t\t
      \n\t\t\t\t\t

      About Version 2 Digital<\/h3>

      Version 2 Digital is one of the most dynamic IT companies in Asia. The company distributes a wide range of IT products across various areas including cyber security, cloud, data protection, end points, infrastructures, system monitoring, storage, networking, business productivity and communication products.\n

      \nThrough an extensive network of channels, point of sales, resellers, and partnership companies, Version 2 offers quality products and services which are highly acclaimed in the market. Its customers cover a wide spectrum which include Global 1000 enterprises, regional listed companies, different vertical industries, public utilities, Government, a vast number of successful SMEs, and consumers in various Asian cities.<\/p><\/div><\/div>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<\/div>\n\t\t\n\t\t

      \n\t\t\t\t\t\t
      \n\t\t\t\t\t\t
      \n\t\t\t\t\t
      \n\t\t\t
      \n\t\t\t\t\t\t
      \n\t\t\t\t
      \n\t\t\t\t\t\t\t\t\t

      <\/p>\n

      About SCADAfence<\/strong>
      SCADAfence helps companies with large-scale operational technology (OT) networks embrace the benefits of industrial IoT by reducing cyber risks and mitigating operational threats. Our non-intrusive platform provides full coverage of large-scale networks, offering best-in-class detection accuracy, asset discovery and user experience. The platform seamlessly integrates OT security within existing security operations, bridging the IT\/OT convergence gap. SCADAfence secures OT networks in manufacturing, building management and critical infrastructure industries. We deliver security and visibility for some of world\u2019s most complex OT networks, including Europe\u2019s largest manufacturing facility. With SCADAfence, companies can operate securely, reliably and efficiently as they go through the digital transformation journey.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<\/div>\n\t\t","protected":false},"excerpt":{"rendered":"

      SigRed Overview SigRed is a vulnerability that was expo […]<\/p>\n","protected":false},"author":143524195,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[417,61,99],"tags":[98,418],"class_list":["post-16894","post","type-post","status-publish","format-standard","hentry","category-scadafence","category-press-release","category-year2020","tag-98","tag-scadafence"],"acf":[],"yoast_head":"\nSigRed: A Wormable Microsoft DNS Server RCE Vulnerability - Version 2<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/blog.scadafence.com\/sigred-a-vulnerability-that-poses-immediate-and-serious-threat-to-organizations\" \/>\n<meta property=\"og:locale\" content=\"zh_HK\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"SigRed: A Wormable Microsoft DNS Server RCE Vulnerability - Version 2\" \/>\n<meta property=\"og:description\" content=\"SigRed Overview SigRed is a vulnerability that was expo […]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/blog.scadafence.com\/sigred-a-vulnerability-that-poses-immediate-and-serious-threat-to-organizations\" \/>\n<meta property=\"og:site_name\" content=\"Version 2\" \/>\n<meta property=\"article:published_time\" content=\"2020-07-25T08:58:15+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2022-03-07T06:50:50+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/version-2.com\/wp-content\/uploads\/2020\/07\/SCADAfence-2.jpg\" \/>\n<meta name=\"author\" content=\"version2hk\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"\u4f5c\u8005\" \/>\n\t<meta name=\"twitter:data1\" content=\"version2hk\" \/>\n\t<meta name=\"twitter:label2\" content=\"\u9810\u8a08\u95b1\u8b80\u6642\u9593\" \/>\n\t<meta name=\"twitter:data2\" content=\"6 \u5206\u9418\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/blog.scadafence.com\\\/sigred-a-vulnerability-that-poses-immediate-and-serious-threat-to-organizations#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/version-2.com\\\/2020\\\/07\\\/sigred-a-wormable-microsoft-dns-server-rce-vulnerability\\\/\"},\"author\":{\"name\":\"version2hk\",\"@id\":\"https:\\\/\\\/version-2.com\\\/zh\\\/#\\\/schema\\\/person\\\/d14d2d3cd77ffdb618b9f1330fe084db\"},\"headline\":\"SigRed: A Wormable Microsoft DNS Server RCE Vulnerability\",\"datePublished\":\"2020-07-25T08:58:15+00:00\",\"dateModified\":\"2022-03-07T06:50:50+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/version-2.com\\\/2020\\\/07\\\/sigred-a-wormable-microsoft-dns-server-rce-vulnerability\\\/\"},\"wordCount\":809,\"publisher\":{\"@id\":\"https:\\\/\\\/version-2.com\\\/zh\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/blog.scadafence.com\\\/sigred-a-vulnerability-that-poses-immediate-and-serious-threat-to-organizations#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/version-2.com\\\/wp-content\\\/uploads\\\/2020\\\/07\\\/SCADAfence-2.jpg\",\"keywords\":[\"2020\",\"SCADAfence\"],\"articleSection\":[\"SCADAfence\",\"Press Release\",\"2020\"],\"inLanguage\":\"zh-HK\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/version-2.com\\\/2020\\\/07\\\/sigred-a-wormable-microsoft-dns-server-rce-vulnerability\\\/\",\"url\":\"https:\\\/\\\/blog.scadafence.com\\\/sigred-a-vulnerability-that-poses-immediate-and-serious-threat-to-organizations\",\"name\":\"SigRed: A Wormable Microsoft DNS Server RCE Vulnerability - Version 2\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/version-2.com\\\/zh\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/blog.scadafence.com\\\/sigred-a-vulnerability-that-poses-immediate-and-serious-threat-to-organizations#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/blog.scadafence.com\\\/sigred-a-vulnerability-that-poses-immediate-and-serious-threat-to-organizations#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/version-2.com\\\/wp-content\\\/uploads\\\/2020\\\/07\\\/SCADAfence-2.jpg\",\"datePublished\":\"2020-07-25T08:58:15+00:00\",\"dateModified\":\"2022-03-07T06:50:50+00:00\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/blog.scadafence.com\\\/sigred-a-vulnerability-that-poses-immediate-and-serious-threat-to-organizations#breadcrumb\"},\"inLanguage\":\"zh-HK\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/blog.scadafence.com\\\/sigred-a-vulnerability-that-poses-immediate-and-serious-threat-to-organizations\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"zh-HK\",\"@id\":\"https:\\\/\\\/blog.scadafence.com\\\/sigred-a-vulnerability-that-poses-immediate-and-serious-threat-to-organizations#primaryimage\",\"url\":\"https:\\\/\\\/version-2.com\\\/wp-content\\\/uploads\\\/2020\\\/07\\\/SCADAfence-2.jpg\",\"contentUrl\":\"https:\\\/\\\/version-2.com\\\/wp-content\\\/uploads\\\/2020\\\/07\\\/SCADAfence-2.jpg\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/blog.scadafence.com\\\/sigred-a-vulnerability-that-poses-immediate-and-serious-threat-to-organizations#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"\u9996\u9801\",\"item\":\"https:\\\/\\\/version-2.com\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"SigRed: A Wormable Microsoft DNS Server RCE Vulnerability\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/version-2.com\\\/zh\\\/#website\",\"url\":\"https:\\\/\\\/version-2.com\\\/zh\\\/\",\"name\":\"Version 2\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\\\/\\\/version-2.com\\\/zh\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/version-2.com\\\/zh\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"zh-HK\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/version-2.com\\\/zh\\\/#organization\",\"name\":\"Version 2\",\"url\":\"https:\\\/\\\/version-2.com\\\/zh\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"zh-HK\",\"@id\":\"https:\\\/\\\/version-2.com\\\/zh\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/i0.wp.com\\\/version-2.com\\\/wp-content\\\/uploads\\\/2020\\\/08\\\/v2-hk-hor-4.png?fit=1795%2C335&ssl=1\",\"contentUrl\":\"https:\\\/\\\/i0.wp.com\\\/version-2.com\\\/wp-content\\\/uploads\\\/2020\\\/08\\\/v2-hk-hor-4.png?fit=1795%2C335&ssl=1\",\"width\":1795,\"height\":335,\"caption\":\"Version 2\"},\"image\":{\"@id\":\"https:\\\/\\\/version-2.com\\\/zh\\\/#\\\/schema\\\/logo\\\/image\\\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/version-2.com\\\/zh\\\/#\\\/schema\\\/person\\\/d14d2d3cd77ffdb618b9f1330fe084db\",\"name\":\"version2hk\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"zh-HK\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/d280627252b42d7489de74dd88aa04043a495f25e258575000dc767e287bf94c?s=96&d=identicon&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/d280627252b42d7489de74dd88aa04043a495f25e258575000dc767e287bf94c?s=96&d=identicon&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/d280627252b42d7489de74dd88aa04043a495f25e258575000dc767e287bf94c?s=96&d=identicon&r=g\",\"caption\":\"version2hk\"},\"sameAs\":[\"http:\\\/\\\/version2xfortcom.wordpress.com\"],\"url\":\"https:\\\/\\\/version-2.com\\\/zh\\\/author\\\/version2hk\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"SigRed: A Wormable Microsoft DNS Server RCE Vulnerability - Version 2","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/blog.scadafence.com\/sigred-a-vulnerability-that-poses-immediate-and-serious-threat-to-organizations","og_locale":"zh_HK","og_type":"article","og_title":"SigRed: A Wormable Microsoft DNS Server RCE Vulnerability - Version 2","og_description":"SigRed Overview SigRed is a vulnerability that was expo […]","og_url":"https:\/\/blog.scadafence.com\/sigred-a-vulnerability-that-poses-immediate-and-serious-threat-to-organizations","og_site_name":"Version 2","article_published_time":"2020-07-25T08:58:15+00:00","article_modified_time":"2022-03-07T06:50:50+00:00","og_image":[{"url":"https:\/\/version-2.com\/wp-content\/uploads\/2020\/07\/SCADAfence-2.jpg","type":"","width":"","height":""}],"author":"version2hk","twitter_card":"summary_large_image","twitter_misc":{"\u4f5c\u8005":"version2hk","\u9810\u8a08\u95b1\u8b80\u6642\u9593":"6 \u5206\u9418"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/blog.scadafence.com\/sigred-a-vulnerability-that-poses-immediate-and-serious-threat-to-organizations#article","isPartOf":{"@id":"https:\/\/version-2.com\/2020\/07\/sigred-a-wormable-microsoft-dns-server-rce-vulnerability\/"},"author":{"name":"version2hk","@id":"https:\/\/version-2.com\/zh\/#\/schema\/person\/d14d2d3cd77ffdb618b9f1330fe084db"},"headline":"SigRed: A Wormable Microsoft DNS Server RCE Vulnerability","datePublished":"2020-07-25T08:58:15+00:00","dateModified":"2022-03-07T06:50:50+00:00","mainEntityOfPage":{"@id":"https:\/\/version-2.com\/2020\/07\/sigred-a-wormable-microsoft-dns-server-rce-vulnerability\/"},"wordCount":809,"publisher":{"@id":"https:\/\/version-2.com\/zh\/#organization"},"image":{"@id":"https:\/\/blog.scadafence.com\/sigred-a-vulnerability-that-poses-immediate-and-serious-threat-to-organizations#primaryimage"},"thumbnailUrl":"https:\/\/version-2.com\/wp-content\/uploads\/2020\/07\/SCADAfence-2.jpg","keywords":["2020","SCADAfence"],"articleSection":["SCADAfence","Press Release","2020"],"inLanguage":"zh-HK"},{"@type":"WebPage","@id":"https:\/\/version-2.com\/2020\/07\/sigred-a-wormable-microsoft-dns-server-rce-vulnerability\/","url":"https:\/\/blog.scadafence.com\/sigred-a-vulnerability-that-poses-immediate-and-serious-threat-to-organizations","name":"SigRed: A Wormable Microsoft DNS Server RCE Vulnerability - Version 2","isPartOf":{"@id":"https:\/\/version-2.com\/zh\/#website"},"primaryImageOfPage":{"@id":"https:\/\/blog.scadafence.com\/sigred-a-vulnerability-that-poses-immediate-and-serious-threat-to-organizations#primaryimage"},"image":{"@id":"https:\/\/blog.scadafence.com\/sigred-a-vulnerability-that-poses-immediate-and-serious-threat-to-organizations#primaryimage"},"thumbnailUrl":"https:\/\/version-2.com\/wp-content\/uploads\/2020\/07\/SCADAfence-2.jpg","datePublished":"2020-07-25T08:58:15+00:00","dateModified":"2022-03-07T06:50:50+00:00","breadcrumb":{"@id":"https:\/\/blog.scadafence.com\/sigred-a-vulnerability-that-poses-immediate-and-serious-threat-to-organizations#breadcrumb"},"inLanguage":"zh-HK","potentialAction":[{"@type":"ReadAction","target":["https:\/\/blog.scadafence.com\/sigred-a-vulnerability-that-poses-immediate-and-serious-threat-to-organizations"]}]},{"@type":"ImageObject","inLanguage":"zh-HK","@id":"https:\/\/blog.scadafence.com\/sigred-a-vulnerability-that-poses-immediate-and-serious-threat-to-organizations#primaryimage","url":"https:\/\/version-2.com\/wp-content\/uploads\/2020\/07\/SCADAfence-2.jpg","contentUrl":"https:\/\/version-2.com\/wp-content\/uploads\/2020\/07\/SCADAfence-2.jpg"},{"@type":"BreadcrumbList","@id":"https:\/\/blog.scadafence.com\/sigred-a-vulnerability-that-poses-immediate-and-serious-threat-to-organizations#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"\u9996\u9801","item":"https:\/\/version-2.com\/"},{"@type":"ListItem","position":2,"name":"SigRed: A Wormable Microsoft DNS Server RCE Vulnerability"}]},{"@type":"WebSite","@id":"https:\/\/version-2.com\/zh\/#website","url":"https:\/\/version-2.com\/zh\/","name":"Version 2","description":"","publisher":{"@id":"https:\/\/version-2.com\/zh\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/version-2.com\/zh\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"zh-HK"},{"@type":"Organization","@id":"https:\/\/version-2.com\/zh\/#organization","name":"Version 2","url":"https:\/\/version-2.com\/zh\/","logo":{"@type":"ImageObject","inLanguage":"zh-HK","@id":"https:\/\/version-2.com\/zh\/#\/schema\/logo\/image\/","url":"https:\/\/i0.wp.com\/version-2.com\/wp-content\/uploads\/2020\/08\/v2-hk-hor-4.png?fit=1795%2C335&ssl=1","contentUrl":"https:\/\/i0.wp.com\/version-2.com\/wp-content\/uploads\/2020\/08\/v2-hk-hor-4.png?fit=1795%2C335&ssl=1","width":1795,"height":335,"caption":"Version 2"},"image":{"@id":"https:\/\/version-2.com\/zh\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/version-2.com\/zh\/#\/schema\/person\/d14d2d3cd77ffdb618b9f1330fe084db","name":"version2hk","image":{"@type":"ImageObject","inLanguage":"zh-HK","@id":"https:\/\/secure.gravatar.com\/avatar\/d280627252b42d7489de74dd88aa04043a495f25e258575000dc767e287bf94c?s=96&d=identicon&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/d280627252b42d7489de74dd88aa04043a495f25e258575000dc767e287bf94c?s=96&d=identicon&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/d280627252b42d7489de74dd88aa04043a495f25e258575000dc767e287bf94c?s=96&d=identicon&r=g","caption":"version2hk"},"sameAs":["http:\/\/version2xfortcom.wordpress.com"],"url":"https:\/\/version-2.com\/zh\/author\/version2hk\/"}]}},"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/pbQRKm-4ou","post_mailing_queue_ids":[],"_links":{"self":[{"href":"https:\/\/version-2.com\/zh\/wp-json\/wp\/v2\/posts\/16894","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/version-2.com\/zh\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/version-2.com\/zh\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/version-2.com\/zh\/wp-json\/wp\/v2\/users\/143524195"}],"replies":[{"embeddable":true,"href":"https:\/\/version-2.com\/zh\/wp-json\/wp\/v2\/comments?post=16894"}],"version-history":[{"count":18,"href":"https:\/\/version-2.com\/zh\/wp-json\/wp\/v2\/posts\/16894\/revisions"}],"predecessor-version":[{"id":44204,"href":"https:\/\/version-2.com\/zh\/wp-json\/wp\/v2\/posts\/16894\/revisions\/44204"}],"wp:attachment":[{"href":"https:\/\/version-2.com\/zh\/wp-json\/wp\/v2\/media?parent=16894"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/version-2.com\/zh\/wp-json\/wp\/v2\/categories?post=16894"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/version-2.com\/zh\/wp-json\/wp\/v2\/tags?post=16894"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}