Drive-by Compromise

TID
ATE-027

Attackers can install malicious code or malware on a victim system when the user visits an infected website without the user having to actively click anything or download a file. This technique exploits vulnerabilities in web browsers, browser extensions or plugins to deliver the malicious payload to the victim's system.

Type
Technique
Severity of Impact
High
Severity of Feasibility
Medium
Scalability
Moderatly
Domain
Automotive
Rail