Ken Westin Nov 24, 2014
A new technique for data exfiltration has been seen in the wild using video uploaded to cloud services as a way to move data out of compromised networks without detection. The technique utilizes steganography where encrypted data is encoded into video files and uploaded to trusted or unmonitored video sharing services.
This particular attack vector has been theoretically possible for some time. However, this is the first time that such an attack has been seen in use as a way to exfiltrate data out of an organization to avoid detection by conventional security tools, such as intrusion detection/prevention systems.