DET0628 Detection of Supply Chain Compromise

Technique Detected: T1474 (Supply Chain Compromise)

Analytics

Android

AN1697

Usage of insecure or malicious third-party libraries could be detected by application vetting services. Malicious software development tools could be detected by enterprises that deploy endpoint protection software on computers that are used to develop mobile apps. Application vetting could detect the usage of insecure or malicious third-party libraries.

Log Sources

Mutable Elements

iOS

AN1698

Usage of insecure or malicious third-party libraries could be detected by application vetting services. Malicious software development tools could be detected by enterprises that deploy endpoint protection software on computers that are used to develop mobile apps. Application vetting could detect the usage of insecure or malicious third-party libraries.

Log Sources

Mutable Elements