TECHNIQUES
- Home
- Techniques
- PRE-ATT&CK
- Build social network persona
Build social network persona
ID: T1341
Sub-techniques:
No sub-techniques
Tactic:
Persona Development
Version: 1.0
Created: 14 December 2017
Last Modified: 17 October 2018
Procedure Examples
Name | Description |
---|---|
APT17 |
APT17 posted in forum threads and created profile pages in Microsoft TechNet.[5] |
Cleaver |
Detection
Detectable by Common Defenses (Yes/No/Partial): No
Explanation: Unless there is some threat intelligence reporting, these users are hard to differentiate.
Difficulty for the Adversary
Easy for the Adversary (Yes/No): Yes
Explanation: Performing activities like typical users, but with specific intent in mind.
References
- Mike Lennon. (2014, May 29). Iranian Hackers Targeted US Officials in Elaborate Social Media Attack Operation. Retrieved March 1, 2017.
- Thomas Ryan. (2010). “Getting In Bed with Robin Sage.”. Retrieved March 6, 2017.
- Joan Goodchild. (2010, July 8). The Robin Sage experiment: Fake profile fools security pros. Retrieved March 6, 2017.
×