| ID | Name |
|---|---|
| ATAGS-T1179.001 | Local Email Collection |
| ATAGS-T1179.002 | Remote Email Collection |
| ATAGS-T1179.003 | Email Forwarding Rule |
Threat Actors may target user email on local systems to collect sensitive information. Files containing email data can be acquired from a user’s local system, such as Outlook storage or cache files.
This type of attack technique cannot be easily mitigated with preventive controls since it is based on the abuse of system features.