Threat actors can leverage communication channels to initially access a resource, using TT&C or a payload channel, opening a communication link to compromise the victim system. Threat actors can perform different actions.
This type of attack technique cannot be easily mitigated with preventive controls since it is based on the abuse of system features.