Detailedlikelihood: Mediumseverity: HighDraft

CAPEC-673Developer Signing Maliciously Altered Software

Abstraction
Detailed
Status
Draft
Likelihood
Medium
Severity
High

Description

Metadata: detailed CAPEC pattern, status draft, likelihood medium, severity high. Mapped ATT&CK technique: [object Object]. Related CAPEC pattern: [object Object]. Metadata: detailed CAPEC pattern, status draft, likelihood medium, severity high. Mapped ATT&CK technique: [object Object]. Related CAPEC pattern: [object Object].

MITRE ATT&CK crosswalk· 1

T1195.002: Supply Chain Compromise: Compromise Software Supply Chain

Related attack patterns· 1

CAPEC-444 (ChildOf)

Related to1

TypeTargetConfidenceTier
SubTechniqueCompromise Software Supply Chaint1195.002100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
System Build Data Maliciously Altered
CAPEC
Alteration of a Software Update
CAPEC
Malicious Code Implanted During Chip Programming
CAPEC
Signing Malicious Code
CAPEC
Malicious Logic Insertion into Product via Inclusion of Third-Party Component
CAPEC
Malicious Logic Insertion into Product Software via Configuration Management Manipulation
Sourced from MITRE CAPEC. Curated by Adam Lundqvist, SQUR.