Threat actors can leverage a computer's peripheral devices (e.g., integrated cameras or webcams) or applications (e.g., video call services) to capture video recordings for the purpose of gathering information. Images may also be captured from devices or applications, potentially in specified intervals, in lieu of video files.
This type of attack technique cannot be easily mitigated with preventive controls since it is based on the abuse of system features.