| ID | Name |
|---|---|
| ATAGS-T1214.001 | External Defacement |
| ATAGS-T1214.002 | Internal Defacement |
An adversary may deface systems external to an organization in an attempt to deliver messaging, intimidate, or otherwise mislead an organization or users. External Defacement may ultimately cause users to distrust the systems and to question/discredit the system’s integrity. Externally-facing websites are a common victim of defacement; often targeted by adversary and hacktivist groups in order to push a political message or spread propaganda. External Defacement may be used as a catalyst to trigger events, or as a response to actions taken by an organization or government. Similarly, website defacement may also be used as setup, or a precursor, for future attacks such as Drive-by Compromise.
This type of attack technique cannot be easily mitigated with preventive controls since it is based on the abuse of system features.