Bypass Code Signing Check

Attackers can execute codes or malware, install tampered firmware by bypassing codes signing security mechanism. This is done by exploiting vulnerabilities such as "lack of verification", "obsolete certificates" or "insecure key management".

Tactic

Defense Evasion

Tactic_ID

ATA-006

Technique_ID

ATE-049

Severity of Impact

Critical

Severity of Feasibility

Medium

Domain

Automotive

Rail

Manipulate Environment

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Affect Vehicle Function

Impact

Bypass Code Signing Check