| ID | Name |
|---|---|
| ATAGS-T1086.001 | Cloud Accounts |
| ATAGS-T1086.002 | Default Accounts |
| ATAGS-T1086.003 | Domain Accounts |
| ATAGS-T1086.004 | Local Accounts |
Threat Actors may obtain and abuse credentials of a local account as a means of gaining Initial Access, Persistence, Privilege Escalation, or Defense Evasion. Local accounts are those configured by an organization for use by users, remote support, services, or for administration on a single system or service.
This type of attack technique cannot be easily mitigated with preventive controls since it is based on the abuse of system features.