Spearphishing (Malicious Attachments/Links)
Supply Chain Compromise
Exploitation of Edge/Networking Devices (e.g., Cisco Smart Install/SMI)
Living-off-the-Land (LotL)
Credential Harvesting
Exploitation of Legacy Protocols (SNMP, SMI)
Watering Hole Attacks
Custom Malware Deployment (e.g., DYMALLOY, SYNful Knock, Havex)