MITRE ATT&CK / T1567.002
T1567.002
Exfiltration to Cloud Storage
SUB-TECHNIQUE Exfiltration
Description
Adversaries may exfiltrate data to a cloud storage service rather than over their primary command and control channel. Cloud storage services allow for the storage, edit, and retrieval of data from a remote cloud storage server over the Internet.Examples of cloud storage services include Dropbox and Google Docs. Exfiltration to these cloud storage services can provide a significant amount of cover to the adversary if hosts within the network are already communicating with the service.
Platforms
ESXiLinuxmacOSWindows
Mitigations
- M1021 — Restrict Web-Based Content
Look up any technique
Use our free MITRE ATT&CK lookup tool, or browse the full ATT&CK matrix.
Source: MITRE ATT&CK Enterprise matrix. View on attack.mitre.org →