You're currently viewing ATT&CK Version 12.1 Enterprise. Change versions here.
Adversaries may steal data by exfiltrating it over an existing command and control channel. Stolen data is encoded into the normal communications channel using the same protocol as command and control communications.