ATT&CK 기법 · Impact
Inhibit System Recovery T1490
이 기법을 다룬 REVELARE 한국어 위협 분석 4편 · Impact
이 기법을 다룬 분석
MITRE 공식 정의
Adversaries may delete or remove built-in data and turn off services designed to aid in the recovery of a corrupted system to prevent recovery.(Citation: Talos Olympic Destroyer 2018)(Citation: FireEye WannaCry 2017) This may deny access to available backups and recovery options. Operating systems may contain features that can help fix corrupted systems, such as a backup catalog, volume shadow copies, and automatic repair features. Adversaries may disable or delete system re…
플랫폼: Containers, ESXi, IaaS, Linux, macOS, Network Devices, Windows