ITM is an open framework - Submit your contributions now.

Infringement

Disruption of Business Operations

Exfiltration via Media Capture

Exfiltration via Messaging Applications

Exfiltration via Other Network Medium

Exfiltration via Physical Medium

Exfiltration via Screen Sharing

Installing Unapproved Software

Providing Access to a Unauthorized Third Party

Public Statements Resulting in Brand Damage

Sharing on AI Chatbot Platforms

Unauthorized Changes to IT Systems

Unauthorized Printing of Documents

Unlawfully Accessing Copyrighted Material

ID: IF001.003
Created: 31st May 2024
Updated: 23rd October 2025
Platforms: WindowsLinuxMacOS
MITRE ATT&CK®: T1567.003T1567
Contributor: The ITM Team

Exfiltration via Text Storage Sites

A subject uses a text storage service, such as Pastebin, to exfiltrate data. They will then access that service again on another device to retrieve the data. Examples include (URLs have been sanitized):

hxxps://pastebin[.]com
hxxps://hastebin[.]com
hxxps://privatebin[.]net
hxxps://controlc[.]com
hxxps://rentry[.]co
hxxps://dpaste[.]org

Preventions (4)

Detections (6)

MITRE ATT&CK® Mapping (2)

ATT&CK Enterprise Matrix Version 18.1

Infringement

Account Sharing

Data Loss

Denial of Service

Disruption of Business Operations

Excessive Personal Use

Exfiltration via Email

Exfiltration via Media Capture

Exfiltration via Messaging Applications

Exfiltration via Other Network Medium

Exfiltration via Physical Medium

Exfiltration via Screen Sharing

Exfiltration via Web Service

Harassment and Discrimination

Inappropriate Web Browsing

Installing Malicious Software

Installing Unapproved Software

Misappropriation of Funds

Non-Corporate Device