{
	"id": "d482dbb2-e748-48fa-a4a7-fbb1c49ad705",
	"created_at": "2026-04-06T00:12:26.466725Z",
	"updated_at": "2026-04-10T03:20:54.495977Z",
	"deleted_at": null,
	"sha1_hash": "d34a416c232039a886bb137682b40f4232b88fd7",
	"title": "SPC-11 · Mobile Threat Catalogue",
	"llm_title": "",
	"authors": "",
	"file_creation_date": "0001-01-01T00:00:00Z",
	"file_modification_date": "0001-01-01T00:00:00Z",
	"file_size": 41853,
	"plain_text": "SPC-11 · Mobile Threat Catalogue\r\nArchived: 2026-04-05 22:43:53 UTC\r\nMobile Threat Catalogue\r\nVulnerable BIOS Installation\r\nContribute\r\nThreat Category: Supply Chain\r\nID: SPC-11\r\nThreat Description: An adversary with access to download and update system software installs a BIOS\r\ncontaining known vulnerabilities for future exploitation.1\r\nThreat Origin\r\nSupply Chain Attack Framework and Attack Patterns 1\r\nExploit Examples\r\nNot Applicable\r\nCVE Examples\r\nNot Applicable\r\nPossible Countermeasures\r\nEnterprise\r\nSystem maintenance processes for highly sensitive components such as BIOS should require dual authentication\r\nto perform, reducing the likelihood a single adversary can introduce malware\r\nUtilize systems with boot validation and attestation to verify that only genuine boot code is executed during\r\nsystem start-up, halting start-up if integrity verification for any component fails\r\nReferences\r\n1. J.F. Miller, “Supply Chain Attack Framework and Attack Patterns”, tech. report, MITRE, Dec. 2013;\r\nwww.mitre.org/sites/default/files/publications/supply-chain-attack-framework-14-0228.pdf ↩ ↩2\r\nSource: https://pages.nist.gov/mobile-threat-catalogue/supply-chain-threats/SPC-11.html\r\nhttps://pages.nist.gov/mobile-threat-catalogue/supply-chain-threats/SPC-11.html\r\nPage 1 of 1",
	"extraction_quality": 1,
	"language": "EN",
	"sources": [
		"MITRE"
	],
	"references": [
		"https://pages.nist.gov/mobile-threat-catalogue/supply-chain-threats/SPC-11.html"
	],
	"report_names": [
		"SPC-11.html"
	],
	"threat_actors": [],
	"ts_created_at": 1775434346,
	"ts_updated_at": 1775791254,
	"ts_creation_date": 0,
	"ts_modification_date": 0,
	"files": {
		"pdf": "https://archive.orkl.eu/d34a416c232039a886bb137682b40f4232b88fd7.pdf",
		"text": "https://archive.orkl.eu/d34a416c232039a886bb137682b40f4232b88fd7.txt",
		"img": "https://archive.orkl.eu/d34a416c232039a886bb137682b40f4232b88fd7.jpg"
	}
}