Threat actors can steal application access tokens as a means of acquiring credentials to access remote systems and resources.
This type of attack technique cannot be easily mitigated with preventive controls since it is based on the abuse of system features.