R-003 - Compromise of credentials leading to administrative access
Description
Use of stolen or weak credentials to gain administrative access to systems.
Linked Scenario
Affected Asset(s)
Risk Evaluation
Likelihood
- Possible
- No MFA / no vault
Impact
- Critical
- Full system compromise
Risk Level
- Critical
Risk Treatment Decision
- Mitigate
Justification
Highest impact scenario across the lab
Associated Controls
- SSH keys
- Restricted access
Residual Risk
- High (no MFA / no vault)
Monitoring & Review
- SSH logs
- Access anomalies
Status
- Open