Supply Chain Compromise

ID: TEQ-011
Phase(s): Resource Development
Tactic(s): Infrastructure Acquisition

The adversary targets 3rd party organisations known to be affiliated to their main target, to compromise infrastructure that is used by the main target. For example, adversaries can compromise software that the main target uses, cloud-based infrastructure or even CDNs used by the main target