Blank Image

Type: technique

Description: The adversary uses a blank image as a way to abuse the image rendering mechanism for data exfiltration techniques, without actually rendering an image a victim might be suspicious about.

Version: 0.1.0

Created At: 2024-10-11 16:54:32 +0300

Last Modified At: 2024-10-11 16:54:32 +0300

External References

--> Defense Evasion (tactic): An adversary can avoid raising suspicion by avoiding rendering an image to carry exfiltrated data.
--> Image Rendering (technique): When using Image Rendering, the adversary chooses a Blank Image that cannot be rendered by the victim client, thus avoiding raising suspicion.
<-- spAIware (procedure): The image at https://wuzzi.net/0.png is a blank 32x32 pixel array - a blank image that is not rendered thus avoiding raising suspicious.

GenAI Attacks Matrix

Blank Image

External References

Related Objects

Related Frameworks