payloadswapping

Payload swapping refers to the deliberate replacement of a software payload during its delivery to a target system, with the intent that the final executed code differs from what the recipient expects. In security contexts, payload refers to the code, data, or instructions that will run after initial access, software deployment, or an update.

The technique can occur in various stages: during software update workflows where an updater component accepts

Defenses include strong code signing and verification of payload integrity, end-to-end encryption and integrity checks of

Related topics include supply chain attacks, man-in-the-middle attacks, and code signing, as well as broader concepts