Threat H.M.CH.2.1

URI: H.M.CH.2.1

Package: Theft

Description: Console access to unprotected admin account on stolen device Host: an attacker with possession of device Host exploits an unprotected admin account via the console.

Threat Type: Primary Threat

Matching Pattern:

MP-CH

Finds a solo Fixed Console Host.

(empty)

TheftOfControl at Role_Host

CSG-BiometricAccessControlAtHost	Access to device *Host* is controlled, by authenticating authorised users using biometrics.
CSG-ChipAndPinAccessControlAtHost	Access to device *Host* is controlled, by authenticating authorised users using a 2-factor system involving possession of a physical key or dongle, such as a chip and PIN card.
CSG-PasswordChecksAtHost	Access to device *Host* is controlled, by authenticating authorised users using a password.

Threat H.M.CH.2.1

MP-CH

Triggered by Threat (0)

Triggers Secondary Threats (0)

Triggered By Control Strategy (0)

Misbehaviour Sets (1)

Control Strategies (3)