CCC.TH01 - Access Control is Misconfigured | CCC

Skip to main content

← Back to CCC Virtual Private Cloud

CCC.TH01: Access Control is Misconfigured

Threat ID:CCC.TH01

Title:Access Control is Misconfigured

Description:

An attacker can exploit misconfigured access controls to grant excessive privileges or gain unauthorized access to sensitive resources.

Related Features:

ID	Title	Description
CCC.F06	Identity Based Access Control	Provides the ability to determine access to resources based on attributes associated with a user identity.

MITRE ATT&CK Techniques:

Related Controls:

ID	Title
CCC.C02	Ensure Data Encryption at Rest for All Stored Data
CCC.C03	Implement Multi-factor Authentication (MFA) for Access
CCC.C04	Log All Access and Changes
CCC.C05	Prevent Access from Untrusted Entities