{
 "description": "Evidence-bound MITRE ATT&CK techniques observed in ctipilot.ch entries referencing Nextcloud GmbH corporate Elasticsearch data exposure (2026). Score = number of published entries mapping the technique. Pinned dataset: ATT&CK v19.1.",
 "domain": "enterprise-attack",
 "gradient": {
  "colors": [
   "#ffe766",
   "#ff6666"
  ],
  "maxValue": 1,
  "minValue": 0
 },
 "hideDisabled": false,
 "layout": {
  "layout": "side",
  "showID": true,
  "showName": true
 },
 "legendItems": [],
 "metadata": [
  {
   "name": "source",
   "value": "ctipilot.ch"
  },
  {
   "name": "entity",
   "value": "incident:nextcloud-gmbh-elasticsearch-exposure-2026"
  },
  {
   "name": "attack_version",
   "value": "19.1"
  }
 ],
 "name": "Nextcloud GmbH corporate Elasticsearch data exposure (2026) \u2014 ctipilot.ch coverage",
 "sorting": 3,
 "techniques": [
  {
   "comment": "entries: 2026-07-10/nextcloud-gmbh-elasticsearch-exposure-msb-nrw",
   "score": 1,
   "techniqueID": "T1552.001"
  },
  {
   "comment": "entries: 2026-07-10/nextcloud-gmbh-elasticsearch-exposure-msb-nrw",
   "score": 1,
   "techniqueID": "T1566"
  },
  {
   "showSubtechniques": true,
   "techniqueID": "T1552"
  }
 ],
 "versions": {
  "attack": "19",
  "layer": "4.5",
  "navigator": "5.1.0"
 }
}