GSPBC-1044: Lateral Movement - Taint Shared Content - GuardSight, Cybersecurity as a Service

GSPBC-1044: Lateral Movement – Taint Shared Content

Taint Shared Content

Adversaries may deliver payloads to remote systems by adding content to shared storage locations, such as network drives or internal code repositories. Content stored on network drives or in other shared locations may be tainted by adding malicious programs, scripts, or exploit code to otherwise valid files. Once a user opens the shared tainted content, the malicious portion can be executed to run the adversary’s code on a remote system. Adversaries may use tainted shared content to move laterally.

Source:
https://attack.mitre.org/techniques/T1080/

Back to Playbook Battle Cards

See Playbook Battle Cards on GitHub

Katherine Kostreva2022-01-26T18:46:35+00:00

Free Playbook Battle Cards

Join our newsletter to stay up to date on the latest industry trends, cybersecurity tools, and resources.

Experiencing a breach? Get in touch.

Free Playbook Battle Cards

Join our newsletter to stay up to date on the latest industry trends, cybersecurity tools, and resources.

Experiencing a breach? Get in touch.

GuardSight, Inc.
755 S. Main St., 4-137
Cedar City, UT 84720
info@guardsight.com
844-482-7374