| ID | Name |
|---|---|
| ATAGS-T1203.001 | Exfiltration to Code Repository |
| ATAGS-T1203.002 | Exfiltration to Cloud Storage |
| ATAGS-T1203.003 | Exfiltration to Text Storage Sites |
| ATAGS-T1203.004 | Exfiltration Over Webhook |
Threat Actors may exfiltrate data to text storage sites instead of their primary command and control channel. Text storage sites, such as pastebin[.]com, are commonly used by developers to share code and other information.
This type of attack technique cannot be easily mitigated with preventive controls since it is based on the abuse of system features.