| ID | Name |
|---|---|
| ATAGS-T1029.001 | Spearphishing Link |
| ATAGS-T1029.002 | Spearphishing Voice |
| ATAGS-T1029.003 | Phishing Attachment |
| ATAGS-T1029.004 | Spearphishing via Service |
Threat actors may send spearphishing emails with a malicious link in an attempt to gain access to victim systems. Spearphishing with a link is a specific variant of spearphishing. It is different from other forms of spearphishing in that it employs the use of links to download malware contained in email, instead of attaching malicious files to the email itself, to avoid defenses that may inspect email attachments. Spearphishing may also involve social engineering techniques, such as posing as a trusted source.
This type of attack technique cannot be easily mitigated with preventive controls since it is based on the abuse of system features.