| ID | Name |
|---|---|
| ATAGS-T1075.001 | Browser Extentions |
| ATAGS-T1075.002 | Hybrid Identity |
| ATAGS-T1075.003 | IDE extentions |
Threat Actors may abuse internet browser extensions to establish persistent access to victim systems. Browser extensions or plugins are small programs that can add functionality to and customize aspects of internet browsers. They can be installed directly via a local file or custom URL or through a browser's app store - an official online platform where users can browse, install, and manage extensions for a specific web browser. Extensions generally inherit the web browser's permissions previously granted.
This type of attack technique cannot be easily mitigated with preventive controls since it is based on the abuse of system features.