Threat P.L.PMHHS.2.1

URI: P.L.PMHHS.2.1

Package: Theft

Description: Use of Process by reconnecting stolen device Host to networks in Space: an attacker with possession of physical device MobileClient and access to Space can reconnect Host to networks accessible from Space and exploit their ability to control how Process makes use of that connectivity to access services.

Threat Type: Primary Threat

Matching Pattern:

MP-PMHHS

Finds a non-trivial Process running on a host whose physical host is a Mobile Console Host that may be located in a Space, plus associated process network access contexts from that Space, and optionally an interactive Process user.

(empty)

TheftOfControl at Role_ProcAccess

(empty)

Threat P.L.PMHHS.2.1

MP-PMHHS

Triggered by Threat (0)

Triggers Secondary Threats (0)

Triggered By Control Strategy (0)

Misbehaviour Sets (1)

Control Strategies (0)