{"id":"https://openalex.org/W4415569798","doi":"https://doi.org/10.32604/cmc.2025.069212","title":"Unveiling Zero-Click Attacks: Mapping MITRE ATT&amp;CK Framework for Enhanced Cybersecurity","display_name":"Unveiling Zero-Click Attacks: Mapping MITRE ATT&amp;CK Framework for Enhanced Cybersecurity","publication_year":2025,"publication_date":"2025-10-27","ids":{"openalex":"https://openalex.org/W4415569798","doi":"https://doi.org/10.32604/cmc.2025.069212"},"language":"en","primary_location":{"id":"doi:10.32604/cmc.2025.069212","is_oa":true,"landing_page_url":"https://doi.org/10.32604/cmc.2025.069212","pdf_url":null,"source":{"id":"https://openalex.org/S4210191605","display_name":"Computers, materials & continua/Computers, materials & continua (Print)","issn_l":"1546-2218","issn":["1546-2218","1546-2226"],"is_oa":true,"is_in_doaj":false,"is_core":true,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Computers, Materials &amp; Continua","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"diamond","oa_url":"https://doi.org/10.32604/cmc.2025.069212","any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5067060148","display_name":"Md. Shohel Rana","orcid":"https://orcid.org/0000-0001-6626-4189"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Md Shohel Rana","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5078851512","display_name":"Tonmoy Ghosh","orcid":"https://orcid.org/0000-0003-1460-2267"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Tonmoy Ghosh","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5120144992","display_name":"Mohammad Nur Nobi","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Mohammad Nur Nobi","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5080737790","display_name":"Anichur Rahman","orcid":"https://orcid.org/0000-0002-2691-1748"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Anichur Rahman","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"last","author":{"id":"https://openalex.org/A5027821975","display_name":"Andrew H. Sung","orcid":"https://orcid.org/0009-0005-0815-3102"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Andrew H. Sung","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]}],"institutions":[],"countries_distinct_count":0,"institutions_distinct_count":5,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":{"value":0.41275905,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":"86","issue":"1","first_page":"1","last_page":"38"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9506999850273132,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9506999850273132,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9484999775886536,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12221","display_name":"Cybersecurity and Cyber Warfare Studies","score":0.9143000245094299,"subfield":{"id":"https://openalex.org/subfields/3320","display_name":"Political Science and International Relations"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/exploit","display_name":"Exploit","score":0.7734000086784363},{"id":"https://openalex.org/keywords/bridging","display_name":"Bridging (networking)","score":0.5938000082969666},{"id":"https://openalex.org/keywords/adversarial-system","display_name":"Adversarial system","score":0.5813000202178955},{"id":"https://openalex.org/keywords/threat-model","display_name":"Threat model","score":0.5702999830245972},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.47690001130104065},{"id":"https://openalex.org/keywords/categorization","display_name":"Categorization","score":0.4034000039100647},{"id":"https://openalex.org/keywords/secure-coding","display_name":"Secure coding","score":0.36899998784065247},{"id":"https://openalex.org/keywords/malware","display_name":"Malware","score":0.3077999949455261}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8159000277519226},{"id":"https://openalex.org/C165696696","wikidata":"https://www.wikidata.org/wiki/Q11287","display_name":"Exploit","level":2,"score":0.7734000086784363},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.6840999722480774},{"id":"https://openalex.org/C174348530","wikidata":"https://www.wikidata.org/wiki/Q188635","display_name":"Bridging (networking)","level":2,"score":0.5938000082969666},{"id":"https://openalex.org/C37736160","wikidata":"https://www.wikidata.org/wiki/Q1801315","display_name":"Adversarial system","level":2,"score":0.5813000202178955},{"id":"https://openalex.org/C140547941","wikidata":"https://www.wikidata.org/wiki/Q7797194","display_name":"Threat model","level":2,"score":0.5702999830245972},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.47690001130104065},{"id":"https://openalex.org/C94124525","wikidata":"https://www.wikidata.org/wiki/Q912550","display_name":"Categorization","level":2,"score":0.4034000039100647},{"id":"https://openalex.org/C22680326","wikidata":"https://www.wikidata.org/wiki/Q7444867","display_name":"Secure coding","level":5,"score":0.36899998784065247},{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.3077999949455261},{"id":"https://openalex.org/C38369872","wikidata":"https://www.wikidata.org/wiki/Q7445009","display_name":"Security analysis","level":2,"score":0.2930999994277954},{"id":"https://openalex.org/C26517878","wikidata":"https://www.wikidata.org/wiki/Q228039","display_name":"Key (lock)","level":2,"score":0.2847000062465668},{"id":"https://openalex.org/C18762648","wikidata":"https://www.wikidata.org/wiki/Q42213","display_name":"Work (physics)","level":2,"score":0.26759999990463257},{"id":"https://openalex.org/C63479239","wikidata":"https://www.wikidata.org/wiki/Q7353546","display_name":"Robustness (evolution)","level":3,"score":0.2667999863624573},{"id":"https://openalex.org/C2780801425","wikidata":"https://www.wikidata.org/wiki/Q5164392","display_name":"Construct (python library)","level":2,"score":0.2651999890804291},{"id":"https://openalex.org/C2780741293","wikidata":"https://www.wikidata.org/wiki/Q4818019","display_name":"Attack patterns","level":3,"score":0.2538999915122986},{"id":"https://openalex.org/C22735295","wikidata":"https://www.wikidata.org/wiki/Q317671","display_name":"Botnet","level":3,"score":0.25380000472068787},{"id":"https://openalex.org/C2779530757","wikidata":"https://www.wikidata.org/wiki/Q1207505","display_name":"Quality (philosophy)","level":2,"score":0.25360000133514404},{"id":"https://openalex.org/C71745522","wikidata":"https://www.wikidata.org/wiki/Q2476929","display_name":"Confidentiality","level":2,"score":0.2500999867916107}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.32604/cmc.2025.069212","is_oa":true,"landing_page_url":"https://doi.org/10.32604/cmc.2025.069212","pdf_url":null,"source":{"id":"https://openalex.org/S4210191605","display_name":"Computers, materials & continua/Computers, materials & continua (Print)","issn_l":"1546-2218","issn":["1546-2218","1546-2226"],"is_oa":true,"is_in_doaj":false,"is_core":true,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Computers, Materials &amp; Continua","raw_type":"journal-article"}],"best_oa_location":{"id":"doi:10.32604/cmc.2025.069212","is_oa":true,"landing_page_url":"https://doi.org/10.32604/cmc.2025.069212","pdf_url":null,"source":{"id":"https://openalex.org/S4210191605","display_name":"Computers, materials & continua/Computers, materials & continua (Print)","issn_l":"1546-2218","issn":["1546-2218","1546-2226"],"is_oa":true,"is_in_doaj":false,"is_core":true,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Computers, Materials &amp; Continua","raw_type":"journal-article"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":0,"referenced_works":[],"related_works":[],"abstract_inverted_index":{"Zero-click":[0],"attacks":[1,69,96,163],"represent":[2],"an":[3,109],"advanced":[4],"cybersecurity":[5,150,224],"threat,":[6],"capable":[7],"of":[8,67,132,140,161,176,219],"compromising":[9],"devices":[10],"without":[11],"user":[12],"interaction.":[13],"High-profile":[14],"examples":[15],"such":[16,95,179],"as":[17,180],"Pegasus,":[18],"Simjacker,":[19],"Bluebugging,":[20],"and":[21,28,37,43,51,65,91,164,186,199,216,222],"Bluesnarfing":[22],"exploit":[23],"hidden":[24],"vulnerabilities":[25],"in":[26,120,167],"software":[27],"communication":[29],"protocols":[30],"to":[31,45,113,147],"silently":[32],"gain":[33],"access,":[34],"exfiltrate":[35],"data,":[36,143],"enable":[38],"long-term":[39],"surveillance.":[40],"Their":[41],"stealth":[42],"ability":[44],"evade":[46],"traditional":[47],"defenses":[48],"make":[49],"detection":[50,105,215],"mitigation":[52],"highly":[53],"challenging.":[54],"This":[55,127],"paper":[56],"addresses":[57],"these":[58],"threats":[59],"by":[60],"systematically":[61],"mapping":[62],"the":[63,71,99,116,123,130,138,141,157,174,195,217],"tactics":[64],"techniques":[66],"zero-click":[68,162,191],"using":[70],"MITRE":[72,124,196],"ATT&CK":[73,125,197],"framework,":[74],"a":[75,209],"widely":[76],"adopted":[77],"standard":[78],"for":[79,203,211],"modeling":[80],"adversarial":[81],"behavior.":[82],"Through":[83],"this":[84,206],"mapping,":[85],"we":[86,107],"categorize":[87],"real-world":[88],"attack":[89,192],"vectors":[90],"better":[92],"understand":[93],"how":[94],"operate":[97],"across":[98],"cyber-kill":[100],"chain.":[101],"To":[102],"support":[103],"threat":[104,184,214],"efforts,":[106],"propose":[108],"Active":[110],"Learning-based":[111],"method":[112],"efficiently":[114],"label":[115],"Pegasus":[117],"spyware":[118],"dataset":[119,204],"alignment":[121],"with":[122,194],"framework.":[126],"approach":[128],"reduces":[129],"effort":[131],"manually":[133],"annotating":[134],"data":[135],"while":[136],"improving":[137],"quality":[139],"labeled":[142],"which":[144],"is":[145],"essential":[146],"train":[148],"robust":[149],"models.":[151],"In":[152],"addition,":[153],"our":[154],"analysis":[155,193],"highlights":[156],"structured":[158,223],"execution":[159],"paths":[160],"reveals":[165],"gaps":[166],"current":[168],"defense":[169],"strategies.":[170],"The":[171],"findings":[172],"emphasize":[173],"importance":[175],"forward-looking":[177],"strategies":[178],"continuous":[181],"surveillance,":[182],"dynamic":[183],"profiling,":[185],"security":[187],"education.":[188],"By":[189],"bridging":[190],"framework":[198],"leveraging":[200],"machine":[201],"learning":[202],"annotation,":[205],"work":[207],"provides":[208],"foundation":[210],"more":[212,220],"accurate":[213],"development":[218],"resilient":[221],"frameworks.":[225]},"counts_by_year":[],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-28T00:00:00"}