| ID | Name |
|---|---|
| ATAGS-T1080.001 | Additional Cloud Credentials |
| ATAGS-T1080.002 | Additional Cloud Roles |
| ATAGS-T1080.003 | Additional Container Cluster Roles |
| ATAGS-T1080.004 | Additional Email Delegate Permissions |
| ATAGS-T1080.005 | Additional Local or Domain Groups |
| ATAGS-T1080.006 | Device Registration |
| ATAGS-T1080.007 | SSH Authorized Keys |
Threat Actors may add adversary-controlled credentials to a cloud account to maintain persistent access to victim accounts and instances within the environment.
This type of attack technique cannot be easily mitigated with preventive controls since it is based on the abuse of system features.