Dark Mode
Capec-474 Detail
Signature Spoofing by Key Theft
Detailed Software Likelihood: Medium Typical Severity: High
Parents: 473
Threats: T59 T263 T271 T292 T307
An attacker obtains an authoritative or reputable signer's private signature key by theft and then uses this key to forge signatures from the original signer to mislead a victim into performing actions that benefit the attacker.
Not present
| External ID | Source | Link | Description |
|---|---|---|---|
| CAPEC-474 | capec | https://capec.mitre.org/data/definitions/474.html | |
| CWE-522 | cwe | http://cwe.mitre.org/data/definitions/522.html | |
| T1552.004 | ATTACK | https://attack.mitre.org/wiki/Technique/T1552/004 | Unsecured Credentials: Private Keys |
| REF-411 | reference_from_CAPEC | Sigbjørn Vik, Security breach stopped, 2013--06---26, http://my.opera.com/securitygroup/blog/2013/06/26/opera-infrastructure-attack | |
| REF-412 | reference_from_CAPEC | Patrick Morley, Bit9 and Our Customers’ Security, 2013--02---08, https://blog.bit9.com/2013/02/08/bit9-and-our-customers-security/ | |
| REF-413 | reference_from_CAPEC | Brad Arkin, Inappropriate Use of Adobe Code Signing Certificate, 2012--09---27, http://blogs.adobe.com/asset/2012/09/inappropriate-use-of-adobe-code-signing-certificate.html |
Not present
- An authoritative or reputable signer is storing their private signature key with insufficient protection.
Not present
| Low | High |
|---|---|
| Knowledge of common location methods and access methods to sensitive data | |
| Ability to compromise systems containing sensitive data |
Not present
Not present