Compromise Software Supply Chain (T1195.002)

Adversaries may manipulate application software prior to receipt by a final consumer for the purpose of data or system compromise. Supply chain compromise of software can take place in a number of ways, including manipulation of the application source code, manipulation of the update/distribution mechanism for that software, or replacing compiled releases with a modified version. Targeting may be specific to a desired victim set or may be distributed to a broad set of consumers but only move on to additional tactics on specific victims.(Citation: Avast CCleaner3 2018)(Citation: Command Five SK 2011)

Source: https://github.com/mitre/cti

Related Prelude attack chains

Release Date (Newest)

Filter

Search for chains, TTPs, themes, and text

Browse By:

Platforms

All
Windows
Darwin
Linux
Global
Android

Themes

Licenses

APT38 CryptoSpy

2022-06-07

Launch a pneuma agent hidden in a crypto ticker application.

B1-66ER (Initial Access)

2021-09-28

Gain initial access by installing SciPy with concealed Schism agent

About PreludePrelude hardens an organization's defenses by continuously “asking” it questions through the form of safe cyberattacks. These attacks respond immediately to the latest vulnerabilities and cyber events, turning complex technical descriptions into deployable “questions”.Our mission is to increase the reach, frequency and usage of advanced security for all organizations.

Follow @preludeorg on Twitter for new chains and more.

Join the Prelude Discord to discuss chains and more.

Keep up to date with code changes and community activity on Github

preludesecurity.com Careers Tactics & Techniques Attack themes

Privacy Policy support@preludesecurity.com© 2023 Prelude Research, Inc.All rights reserved. Prelude, its logo and other trademarks are trademarks of Prelude Research, Inc. and may not be used without permission.

Compromise Software Supply Chain (T1195.002)

Browse By:

Platforms

All

Windows

Darwin

Linux

Global

Android

Themes

Tags

Licenses