A type of malicious code or software intended to harm or compromise the confidentiality, integrity, or availability of a victim's device or data.
OASIS Cyber Threat Intelligence (CTI) Technical Committee. (2021). STIX Version 2.1 (B. Jordan, R. Piazza, & T. Darley, Eds.). https://docs.oasis-open.org/cti/stix/v2.1/os/stix-v2.1-os.html
