ATT&CK v18 has been released! Check out the blog post or changelog for more information.

Detection of Replication Through Removable Media

ID: DET0691

Domains: Mobile

Analytics: AN1802, AN1803

Version: 1.0

Created: 21 October 2025

Last Modified: 21 October 2025

Live Version

Analytics

Mobile security products can often alert the user if their device is vulnerable to known exploits.

Data Component	Name	Channel
Host Status (DC0018)	Sensor Health	None

Mobile security products can often alert the user if their device is vulnerable to known exploits.

Data Component	Name	Channel
Host Status (DC0018)	Sensor Health	None