Threat P.L.HuHE2AC.3

URI: P.L.HuHE2AC.3

Description: Execution of malicious email attachment by MUA on Host in Space: the user Human runs a malicious file sent as an email attachment while the host device is located in Space, allowing the attacker to exploit the privileges using connections accessible to their email client MUA via Host from Space.

Threat Type: Primary Threat

Matching Pattern:

MP-HuHE2AC

Finds a human interacting directly with an email client running on a host in a space, plus the associated location access context, and related process access contexts corresponding to the subnet connections of the host.

(empty)

P.L.HPmAC.0

Access to the rights of Process by unauthorized agents in all contexts : if untrustworthy actors gain access to Host with the rights of Process, the best case trustworthiness of its users in any context is degraded.

P.L.HPsAC.0

Access to the rights of Process by unauthorized agents in any context: if an untrustworthy actor gains access to Host with the rights of Process in any context, the worst case trustworthiness of its users in any context is degraded.

(empty)

CSG-AntiMalwareAtHost	Anti-malware software is installed on device *Host* and kept up to date by regular software patches, and so can detect and prevent the execution of malicious code.
CSG-SpamFilteringAtMUA	Spam filtering functionality is installed on the email user agent *MUA* (a mail client or a webmail service).
CSG-UserSecurityTraining	Users in the role *Human* are trained to avoid most common cyber security errors by using only strong passwords, recognising malicious emails, and the importance of physical security including the use of screen locking for fixed devices that cannot be carried on the person.

Threat P.L.HuHE2AC.3

MP-HuHE2AC

Triggered by Threat (0)

Triggers Secondary Threats (2)

P.L.HPmAC.0

P.L.HPsAC.0

Triggered By Control Strategy (0)

Misbehaviour Sets (0)

Control Strategies (3)