cti/mobile-attack/attack-pattern/attack-pattern--d731c21e-f27d-4756-b418-0e2aaabd6d63.json

{
    "type": "bundle",
    "id": "bundle--80aec76a-3625-4798-a010-b8057fc968cd",
    "spec_version": "2.0",
    "objects": [
        {
            "id": "attack-pattern--d731c21e-f27d-4756-b418-0e2aaabd6d63",
            "created_by_ref": "identity--c78cb6e5-0c4b-4611-8297-d1b8b55e40b5",
            "name": "Manipulate Device Communication",
            "description": "If network traffic between the mobile device and a remote server is not securely protected, then an attacker positioned on the network may be able to manipulate network communication without being detected. For example, FireEye researchers found in 2014 that 68% of the top 1,000 free applications in the Google Play Store had at least one Transport Layer Security (TLS) implementation vulnerability potentially opening the applications' network traffic to man-in-the-middle attacks (Citation: FireEye-SSL).",
            "external_references": [
                {
                    "source_name": "mitre-mobile-attack",
                    "url": "https://attack.mitre.org/techniques/T1463",
                    "external_id": "T1463"
                },
                {
                    "source_name": "NIST Mobile Threat Catalogue",
                    "url": "https://pages.nist.gov/mobile-threat-catalogue/application-threats/APP-1.html",
                    "external_id": "APP-1"
                },
                {
                    "source_name": "FireEye-SSL",
                    "description": "Adrian Mettler, Yulong Zhang, Vishwanath Raman. (2014, August 20). SSL VULNERABILITIES: WHO LISTENS WHEN ANDROID APPLICATIONS TALK?. Retrieved December 24, 2016.",
                    "url": "https://www.fireeye.com/blog/threat-research/2014/08/ssl-vulnerabilities-who-listens-when-android-applications-talk.html"
                }
            ],
            "object_marking_refs": [
                "marking-definition--fa42a846-8d90-4e51-bc29-71d5b4802168"
            ],
            "x_mitre_platforms": [
                "Android",
                "iOS"
            ],
            "x_mitre_tactic_type": [
                "Without Adversary Device Access"
            ],
            "x_mitre_version": "1.0",
            "x_mitre_old_attack_id": "MOB-T1066",
            "type": "attack-pattern",
            "kill_chain_phases": [
                {
                    "kill_chain_name": "mitre-mobile-attack",
                    "phase_name": "network-effects"
                }
            ],
            "modified": "2018-10-17T00:14:20.652Z",
            "created": "2017-10-25T14:48:25.322Z"
        }
    ]
}