Supply Chain Compromise: Compromise Hardware Supply Chain

Other sub-techniques of Supply Chain Compromise (3)

ID	Name
T1195.001	Compromise Software Dependencies and Development Tools
T1195.002	Compromise Software Supply Chain
T1195.003	Compromise Hardware Supply Chain

An attacker can replace an hardware component in the supply chain with a custom or counterfeit part, to damage the system or to use it as a future backdoor. An attacker can also induce the intentional use of a not genuine HW component to reduce the system reliability. ^[1]

ID: T1195.003

Sub-technique of: T1195

ⓘ

Tactic: Initial Access

ⓘ

Platforms: None

Version: 2.0

Created: 25 August 2022

Last Modified: 21 April 2023

Mitigations

This type of attack technique cannot be easily mitigated with preventive controls since it is based on the abuse of system features.

References

CCSDS. (2022, February). REPORT CONCERNING SECURITY THREATS AGAINST SPACE MISSIONS, CCSDS 350.1-G-3. Retrieved September 29, 2022.