Drive-by Compromise

Attackers can install malicious code or malware on a victim system when the user visits an infected website without the user having to actively click anything or download a file. This technique exploits vulnerabilities in web browsers, browser extensions or plugins to deliver the malicious payload to the victim's system.

Technique_ID
ATE-027
Severity of Impact
High
Severity of Feasibility
Medium
Scalability
Moderatly
Domain
Automotive
Rail