T1195.002: T1195.002
Essential information
- MITRE technique ID
T1195.002- Confidence
- 100/100
- Revoked
- No
- Published
- 11/03/2020 15:17
- Modified
- 27/03/2026 01:11
- Author / Source
- The MITRE Corporation
Aliases
Compromise Software Supply Chain
Platforms
windows macos linux
Description
Adversaries may manipulate application software prior to receipt by a final consumer for the purpose of data or system compromise. Supply chain compromise of software can take place in a number of ways, including manipulation of the application source code, manipulation of the update/distribution mechanism for that software, or replacing compiled releases with a modified version.
Targeting may be specific to a desired victim set or may be distributed to a broad set of consumers but only move on to additional tactics on specific victims.(Citation: Avast CCleaner3 2018)(Citation: Command Five SK 2011)
Kill chain phases
| Kill chain | Phase |
|---|---|
| mitre-attack | initial-access |
Marking (TLP)
TLP:CLEAR Copyright 2015-2025, The MITRE Corporation. MITRE ATT&CK and ATT&CK are registered trademarks of The MITRE Corporation.