{"description": "Enterprise techniques mitigated by Data Loss Prevention, ATT&CK mitigation M1057 (v1.1)", "name": "Data Loss Prevention (M1057)", "domain": "enterprise-attack", "versions": {"layer": "4.5", "attack": "17", "navigator": "5.1.0"}, "techniques": [{"techniqueID": "T1020", "showSubtechniques": true}, {"techniqueID": "T1020.001", "comment": "Implement Data Loss Prevention (DLP) solutions to monitor, detect, and control the flow of sensitive information. DLP tools can be configured to block unauthorized attempts to exfiltrate data, such as preventing emails from being forwarded to external recipients or monitoring for suspicious data transfers. By creating email flow rules and applying policies to detect anomalies, DLP solutions help mitigate the risk of data exfiltration over alternative protocols.", "score": 1, "color": "#66b1ff", "showSubtechniques": true}, {"techniqueID": "T1005", "comment": "Data loss prevention can restrict access to sensitive data and detect sensitive data that is unencrypted.", "score": 1, "color": "#66b1ff", "showSubtechniques": false}, {"techniqueID": "T1025", "comment": "Data loss prevention can restrict access to sensitive data and detect sensitive data that is unencrypted.", "score": 1, "color": "#66b1ff", "showSubtechniques": false}, {"techniqueID": "T1048", "comment": "Data loss prevention can detect and block sensitive data being uploaded via web browsers.", "score": 1, "color": "#66b1ff", "showSubtechniques": true}, {"techniqueID": "T1048.002", "comment": "Data loss prevention can detect and block sensitive data being uploaded via web browsers.", "score": 1, "color": "#66b1ff", "showSubtechniques": true}, {"techniqueID": "T1048.003", "comment": "Data loss prevention can detect and block sensitive data being sent over unencrypted protocols.", "score": 1, "color": "#66b1ff", "showSubtechniques": true}, {"techniqueID": "T1041", "comment": "Data loss prevention can detect and block sensitive data being sent over unencrypted protocols.", "score": 1, "color": "#66b1ff", "showSubtechniques": false}, {"techniqueID": "T1052", "comment": "Data loss prevention can detect and block sensitive data being copied to physical mediums.", "score": 1, "color": "#66b1ff", "showSubtechniques": true}, {"techniqueID": "T1052.001", "comment": "Data loss prevention can detect and block sensitive data being copied to USB devices.", "score": 1, "color": "#66b1ff", "showSubtechniques": true}, {"techniqueID": "T1567", "comment": "Data loss prevention can be detect and block sensitive data being uploaded to web services via web browsers.", "score": 1, "color": "#66b1ff", "showSubtechniques": true}, {"techniqueID": "T1567.004", "comment": "Data loss prevention can be detect and block sensitive data being uploaded to web services via web browsers.", "score": 1, "color": "#66b1ff", "showSubtechniques": true}, {"techniqueID": "T1537", "comment": "Data loss prevention can prevent and block sensitive data from being shared with individuals outside an organization.(Citation: Microsoft Purview Data Loss Prevention) (Citation: Google Workspace Data Loss Prevention)", "score": 1, "color": "#66b1ff", "showSubtechniques": false}], "gradient": {"colors": ["#ffffff", "#66b1ff"], "minValue": 0, "maxValue": 1}, "legendItems": [{"label": "mitigated by Data Loss Prevention", "color": "#66b1ff"}]}