test_scratch
/
cti-ATT-CK-v13.1
/ics-attack
/relationship
/relationship--0c284ce0-0be2-4164-b686-7c383b246aec.json
{ | |
"type": "bundle", | |
"id": "bundle--76471a1a-c9c7-4b78-a646-5604cd7e0068", | |
"spec_version": "2.0", | |
"objects": [ | |
{ | |
"type": "relationship", | |
"id": "relationship--0c284ce0-0be2-4164-b686-7c383b246aec", | |
"created": "2020-09-21T17:59:24.739Z", | |
"created_by_ref": "identity--c78cb6e5-0c4b-4611-8297-d1b8b55e40b5", | |
"revoked": false, | |
"external_references": [ | |
{ | |
"source_name": "ESET Research Whitepapers September 2018", | |
"description": "ESET Research Whitepapers 2018, September LOJAX First UEFI rootkit found in the wild, courtesy of the Sednit group Retrieved. 2020/09/25 ", | |
"url": "https://www.welivesecurity.com/wp-content/uploads/2018/09/ESET-LoJax.pdf" | |
}, | |
{ | |
"source_name": "Intel", | |
"description": "Intel ESET Research Whitepapers 2018, September LOJAX First UEFI rootkit found in the wild, courtesy of the Sednit group Retrieved. 2020/09/25 Intel Hardware-based Security Technologies for Intelligent Retail Devices Retrieved. 2020/09/25 ", | |
"url": "https://www.intel.com/content/dam/www/public/us/en/documents/white-papers/security-technologies-4th-gen-core-retail-paper.pdf" | |
}, | |
{ | |
"source_name": "N/A", | |
"description": "N/A Trusted Platform Module (TPM) Summary Retrieved. 2020/09/25 ", | |
"url": "https://www.trustedcomputinggroup.org/wp-content/uploads/Trusted-Platform-Module-Summary_04292008.pdf" | |
} | |
], | |
"object_marking_refs": [ | |
"marking-definition--fa42a846-8d90-4e51-bc29-71d5b4802168" | |
], | |
"modified": "2023-03-21T13:19:56.151Z", | |
"description": "Check the integrity of the existing BIOS or EFI to determine if it is vulnerable to modification. Use Trusted Platform Module technology. (Citation: N/A) Move system's root of trust to hardware to prevent tampering with the SPI flash memory. (Citation: ESET Research Whitepapers September 2018) Technologies such as Intel Boot Guard can assist with this. (Citation: Intel)\n", | |
"relationship_type": "mitigates", | |
"source_ref": "course-of-action--8ac1d6e1-b07f-476a-9732-84984ebc2405", | |
"target_ref": "attack-pattern--efbf7888-f61b-4572-9c80-7e2965c60707", | |
"x_mitre_deprecated": false, | |
"x_mitre_version": "1.0", | |
"x_mitre_attack_spec_version": "3.1.0", | |
"x_mitre_modified_by_ref": "identity--c78cb6e5-0c4b-4611-8297-d1b8b55e40b5" | |
} | |
] | |
} |