Detections
Analytics
Supply Chain Compromise: Compromise Software Supply Chain
Description
Adversaries may manipulate application software prior to receipt by a final consumer for the purpose of data or system compromise. Supply chain compromise of software can take place in a number of ways, including manipulation of the application source code, manipulation of the update/distribution mechanism for that software, or replacing compiled releases with a modified version.
Products, Sensors, and Dependencies
| Product | Dependencies | Data source | Access required | Protocol | Data Collected | Notes |
|---|---|---|---|---|---|---|
| Tenable Vulnerability Management | Advanced Network Scan | Windows machines | Authenticated Scan | SMB | List of Software | Plugin ID: 20811 |
| Tenable Vulnerability Management | Advanced Network Scan | Windows machines | Unauthenticated or Authenticated Scan | Any | Vulnerabilities |
References
Attack Path Technique Details
Framework: MITRE ATT&CK
Family: Initial Access
Technique: Supply Chain Compromise:
Sub-Technique: Compromise Software Supply Chain
Platform: Windows
Products Required: Tenable Vulnerability Management
Tenable Release Date: 2022 Q2