Isabel Tuson
47 lines
2.0 KiB
JSON
47 lines
2.0 KiB
JSON
{
|
|
"type": "bundle",
|
|
"id": "bundle--f7f53a8d-24aa-4d88-9ef1-9d22724806d0",
|
|
"spec_version": "2.0",
|
|
"objects": [
|
|
{
|
|
"id": "attack-pattern--62adb627-f647-498e-b4cc-41499361bacb",
|
|
"created_by_ref": "identity--c78cb6e5-0c4b-4611-8297-d1b8b55e40b5",
|
|
"name": "Access Calendar Entries",
|
|
"description": "An adversary could call standard operating system APIs from a malicious application to gather calendar entry data, or with escalated privileges could directly access files containing calendar data.",
|
|
"external_references": [
|
|
{
|
|
"source_name": "mitre-mobile-attack",
|
|
"url": "https://attack.mitre.org/techniques/T1435",
|
|
"external_id": "T1435"
|
|
},
|
|
{
|
|
"source_name": "NIST Mobile Threat Catalogue",
|
|
"url": "https://pages.nist.gov/mobile-threat-catalogue/application-threats/APP-13.html",
|
|
"external_id": "APP-13"
|
|
}
|
|
],
|
|
"object_marking_refs": [
|
|
"marking-definition--fa42a846-8d90-4e51-bc29-71d5b4802168"
|
|
],
|
|
"x_mitre_detection": "On both Android (6.0 and up) and iOS, the user can view which applications have permission to access calendar information through the device settings screen, and the user can choose to revoke the permissions.",
|
|
"x_mitre_platforms": [
|
|
"Android",
|
|
"iOS"
|
|
],
|
|
"x_mitre_tactic_type": [
|
|
"Post-Adversary Device Access"
|
|
],
|
|
"x_mitre_version": "1.0",
|
|
"x_mitre_old_attack_id": "MOB-T1038",
|
|
"type": "attack-pattern",
|
|
"kill_chain_phases": [
|
|
{
|
|
"kill_chain_name": "mitre-mobile-attack",
|
|
"phase_name": "collection"
|
|
}
|
|
],
|
|
"modified": "2018-10-17T00:14:20.652Z",
|
|
"created": "2017-10-25T14:48:20.727Z"
|
|
}
|
|
]
|
|
} |