T1105 - Ingress Tool Transfer - MITRE ATT&CK

Threat entity extracted from intelligence sources

Frequency
145
occurrences
First Seen
November 20, 2025
Last Seen
July 17, 2026

T1105 - Ingress Tool Transfer is a mitre_attack tracked across 50 threat clusters and 145 intelligence report mentions on ThreatCluster. First observed November 20, 2025; most recent activity July 17, 2026.

Related Threat Clusters

Recent Intelligence Reports

  • ACR Stealer exploits user interaction to steal sensitive data — Feeds.Feedburner · July 17, 2026
  • C'mon, just copy this text string and paste it into your macOS Terminal – it'll fix your computer, honest — Theregister · July 16, 2026
  • New Spirals ransomware encrypts victim network in under 24 hours — Bleepingcomputer · July 16, 2026
  • M-Red-Team: AsyncAPI Supply Chain Compromise via GitHub Actions — Wiz · July 14, 2026
  • 148 Malicious npm Packages Masquerading as Student Proxies Turn Browsers Into DDoS Botnet — Rescana · July 14, 2026
  • AsyncAPI npm packages compromised with Miasma variant — Aikido.Dev · July 14, 2026
  • Apple-notarised CrashStealer malware poses as macOS crash — Itnews.Au · July 14, 2026
  • RDP abused in over 90% of cyber attacks, Sophos finds By: Alex Scroxton — www.computerweekly.com · July 10, 2026

CVSS v3.1 Breakdown