{"description": "Mobile techniques mitigated by Security Updates, ATT&CK mitigation M1001 (v1.0)", "name": "Security Updates (M1001)", "domain": "mobile-attack", "versions": {"layer": "4.5", "attack": "19", "navigator": "5.3.2"}, "techniques": [{"techniqueID": "T1398", "comment": "Security updates frequently contain fixes for vulnerabilities that could be leveraged to modify protected operating system files. ", "score": 1, "color": "#66b1ff", "showSubtechniques": false}, {"techniqueID": "T1577", "comment": "Security updates frequently contain patches to vulnerabilities.", "score": 1, "color": "#66b1ff", "showSubtechniques": false}, {"techniqueID": "T1645", "comment": "Security updates frequently contain fixes for vulnerabilities that could be leveraged to modify protected operating system files. ", "score": 1, "color": "#66b1ff", "showSubtechniques": false}, {"techniqueID": "T1634", "comment": "Apple regularly provides security updates for known OS vulnerabilities.", "score": 1, "color": "#66b1ff", "showSubtechniques": true}, {"techniqueID": "T1634.001", "comment": "Apple regularly provides security updates for known OS vulnerabilities. ", "score": 1, "color": "#66b1ff", "showSubtechniques": true}, {"techniqueID": "T1456", "comment": "Security updates frequently contain patches for known exploits.", "score": 1, "color": "#66b1ff", "showSubtechniques": false}, {"techniqueID": "T1658", "comment": "Security updates frequently contain patches to vulnerabilities. ", "score": 1, "color": "#66b1ff", "showSubtechniques": false}, {"techniqueID": "T1664", "comment": "Security updates frequently contain patches for known software vulnerabilities.", "score": 1, "color": "#66b1ff", "showSubtechniques": false}, {"techniqueID": "T1404", "comment": "Security updates often contain patches for vulnerabilities.", "score": 1, "color": "#66b1ff", "showSubtechniques": false}, {"techniqueID": "T1629", "comment": "Security updates often contain patches for vulnerabilities that could be exploited for root access. Root access is often a requirement to impairing defenses.", "score": 1, "color": "#66b1ff", "showSubtechniques": true}, {"techniqueID": "T1629.003", "comment": "Security updates frequently contain patches to vulnerabilities that can be exploited for root access.", "score": 1, "color": "#66b1ff", "showSubtechniques": true}, {"techniqueID": "T1630", "comment": "Security updates typically provide patches for vulnerabilities that could be abused by malicious applications.", "score": 1, "showSubtechniques": true}, {"techniqueID": "T1630.001", "comment": "Security updates typically provide patches for vulnerabilities that enable device rooting.", "score": 1, "color": "#66b1ff", "showSubtechniques": true}, {"techniqueID": "T1461", "comment": "OS security updates typically contain exploit patches when disclosed.", "score": 1, "color": "#66b1ff", "showSubtechniques": false}, {"techniqueID": "T1458", "comment": "Security updates often contain patches for vulnerabilities.", "score": 1, "color": "#66b1ff", "showSubtechniques": false}, {"techniqueID": "T1474", "comment": "Security updates may contain patches for devices that were compromised at the supply chain level.", "score": 1, "color": "#66b1ff", "showSubtechniques": true}, {"techniqueID": "T1474.002", "comment": "Security updates may contain patches to integrity checking mechanisms that can detect unauthorized hardware modifications.", "score": 1, "color": "#66b1ff", "showSubtechniques": true}, {"techniqueID": "T1474.003", "comment": "Security updates may contain patches that inhibit system software compromises.", "score": 1, "color": "#66b1ff", "showSubtechniques": true}], "gradient": {"colors": ["#ffffff", "#66b1ff"], "minValue": 0, "maxValue": 1}, "legendItems": [{"label": "mitigated by Security Updates", "color": "#66b1ff"}]}