| ID | Name |
|---|---|
| ATAGS-T1184.001 | Junk Data |
| ATAGS-T1184.002 | Steganography |
| ATAGS-T1184.003 | Protocol or Service Impersonation |
Threat Actors may use steganographic techniques to hide command and control traffic to make detection efforts more difficult. Steganographic techniques can be used to hide data in digital messages that are transferred between systems. This hidden information can be used for command and control of compromised systems. In some cases, the passing of files embedded using steganography, such as image or document files, can be used for command and control.
This type of attack technique cannot be easily mitigated with preventive controls since it is based on the abuse of system features.