SOC Incident Toolkit
Back to Campaigns
DarkSword iOS Exploit Kit

DarkSword iOS Exploit Kit

iOSExploit KitZero-DayDarkSwordUNC6353

DarkSword is a sophisticated iOS exploit kit that leverages six vulnerabilities, including three zero-days, to achieve full device takeover. It targets iOS versions 18.4 to 18.7 and has been used by various threat actors, including state-sponsored groups, to exfiltrate sensitive data rapidly.

Indicators of Compromise

Domains (5)

e5.malaymoil.comsahibndn.iostatic.cdncounter.netsqwas.shapelie.comsnapshare.chat

Hashes (1)

2e5a56beb63f21d9347310412ae6efb29fd3db2d3a3fc0798865a29a3c578d35

IPv4 (2)

62.72.21.1072.60.98.48

APT Groups

UNC6353

RU

Notes

<h1 style="line-height: 1.2; margin-top: 15pt; margin-bottom: 10pt;"><span style="font-size: 14pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-weight: 700; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">CONCLUSION</span></h1><p style="margin-top: 12pt; margin-bottom: 12pt; line-height: 1.38;"><span style="font-size: 11pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-weight: 700; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">DarkSword iOS Exploit Kit: When Your iPhone Becomes the Battlefield</span></p><p style="margin-top: 12pt; margin-bottom: 12pt; line-height: 1.38;"><span style="font-size: 11pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">The mobile threat landscape crossed a critical threshold in early 2026. DarkSword, a sophisticated iOS exploit kit, has turned high-end iOS exploitation into a commercial, multi-actor capability — available to the highest bidder.</span></p><p style="margin-top: 12pt; margin-bottom: 12pt; line-height: 1.38;"><span style="font-size: 11pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-weight: 700; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">A Six-CVE Chain That Breaks Apple's Defenses</span></p><p style="margin-top: 12pt; margin-bottom: 12pt; line-height: 1.38;"><span style="font-size: 11pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">DarkSword chains six vulnerabilities — including three zero-days — entirely through JavaScript, achieving full device takeover on iOS 18.4 through 18.7. It bypasses Apple's Page Protection Layer (PPL) and Secure Page Table Monitor (SPTM) without any native code execution, affecting an estimated 220–270 million iPhones globally.</span></p><p style="margin-top: 12pt; margin-bottom: 12pt; line-height: 1.38;"><span style="font-size: 11pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-weight: 700; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Three Actors, One Kit</span></p><p style="margin-top: 12pt; margin-bottom: 12pt; line-height: 1.38;"><span style="font-size: 11pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Within four months, three independent threat actors adopted DarkSword:</span></p><ul style="margin-top: 0px; margin-bottom: 0px;"><li style="list-style-type: disc; font-size: 11pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline; white-space: pre;"><p role="presentation" style="margin-top: 12pt; margin-bottom: 0pt; line-height: 1.38;"><span style="font-size: 11pt; font-weight: 700; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">UNC6353</span><span style="font-size: 11pt; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;"> — GHOSTBLADE payload, Ukrainian government targets (Russian espionage)</span></p></li><li style="list-style-type: disc; font-size: 11pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline; white-space: pre;"><p role="presentation" style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.38;"><span style="font-size: 11pt; font-weight: 700; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">UNC6748</span><span style="font-size: 11pt; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;"> — GHOSTKNIFE payload, Saudi Arabian users via fake Snapchat domain</span></p></li><li style="list-style-type: disc; font-size: 11pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline; white-space: pre;"><p role="presentation" style="margin-top: 0pt; margin-bottom: 12pt; line-height: 1.38;"><span style="font-size: 11pt; font-weight: 700; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">PARS Defense</span><span style="font-size: 11pt; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;"> — GHOSTSABER payload, Turkey and Malaysia targets (commercial surveillance)</span></p></li></ul><p style="margin-top: 12pt; margin-bottom: 12pt; line-height: 1.38;"><span style="font-size: 11pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">This mirrors the EternalBlue proliferation pattern that powered WannaCry.</span></p><p style="margin-top: 12pt; margin-bottom: 12pt; line-height: 1.38;"><span style="font-size: 11pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-weight: 700; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">The GHOST Payloads: Fast, Silent, Gone</span></p><p style="margin-top: 12pt; margin-bottom: 12pt; line-height: 1.38;"><span style="font-size: 11pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">All three payloads exfiltrate messages, crypto wallets, and device data within seconds — then self-clean, wiping crash reports and temporary files to eliminate forensic evidence before responders can act.</span></p><p style="margin-top: 12pt; margin-bottom: 12pt; line-height: 1.38;"><span style="font-size: 11pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-weight: 700; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">What You Need to Do Now</span></p><ul style="margin-top: 0px; margin-bottom: 0px;"><li style="list-style-type: disc; font-size: 11pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline; white-space: pre;"><p role="presentation" style="margin-top: 12pt; margin-bottom: 0pt; line-height: 1.38;"><span style="font-size: 11pt; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Update to </span><span style="font-size: 11pt; font-weight: 700; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">iOS 18.7.6</span><span style="font-size: 11pt; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;"> or </span><span style="font-size: 11pt; font-weight: 700; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">iOS 26.3.1</span><span style="font-size: 11pt; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;"> immediately</span></p></li><li style="list-style-type: disc; font-size: 11pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline; white-space: pre;"><p role="presentation" style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.38;"><span style="font-size: 11pt; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Enable </span><span style="font-size: 11pt; font-weight: 700; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Lockdown Mode</span><span style="font-size: 11pt; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;"> — both DarkSword and Coruna abort when it is detected</span></p></li><li style="list-style-type: disc; font-size: 11pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline; white-space: pre;"><p role="presentation" style="margin-top: 0pt; margin-bottom: 12pt; line-height: 1.38;"><span style="font-size: 11pt; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Implement continuous CVE monitoring, dark web visibility, attack surface management, and brand protection</span></p></li></ul><p style="margin-top: 12pt; margin-bottom: 12pt; line-height: 1.38;"><span style="font-size: 11pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">The era of iOS exploitation as a rare, nation-state-only capability is over. The battlefield is already in your pocket.</span></p><div><span style="font-size: 11pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;"><br></span></div>

Mitigation

<h1 style="line-height: 1.2; margin-top: 15pt; margin-bottom: 10pt;"><span style="font-size: 14pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-weight: 700; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">MITIGATION</span></h1><h2 style="line-height: 1.2; margin-top: 12pt; margin-bottom: 8pt;"><span style="font-size: 12pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-weight: 700; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">M1026 - Privileged Account Management</span></h2><div align="left" style="margin-left: 0pt;"><table style="border: none; border-collapse: collapse;"><colgroup><col><col><col><col></colgroup><tbody><tr style="height: 0pt;"><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; background-color: rgb(46, 117, 182); padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(255, 255, 255); font-weight: 700; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Domain</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; background-color: rgb(46, 117, 182); padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(255, 255, 255); font-weight: 700; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">ID</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; background-color: rgb(46, 117, 182); padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(255, 255, 255); font-weight: 700; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Name</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; background-color: rgb(46, 117, 182); padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(255, 255, 255); font-weight: 700; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Use</span></p></td></tr><tr style="height: 0pt;"><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Enterprise</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">T1548</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Abuse Elevation Control Mechanism</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Remove users from the local administrator group on systems.</span></p></td></tr><tr style="height: 0pt;"><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><br></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><br></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">.002</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Bypass User Account Control</span></p></td></tr><tr style="height: 0pt;"><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><br></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><br></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">.003</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Sudo and Sudo Caching</span></p></td></tr><tr style="height: 0pt;"><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><br></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><br></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">.006</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">TCC Manipulation</span></p></td></tr><tr style="height: 0pt;"><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Enterprise</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">T1134</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Access Token Manipulation</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Limit permissions so that users and user groups cannot create tokens.</span></p></td></tr><tr style="height: 0pt;"><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><br></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><br></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">.001</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Token Impersonation/Theft</span></p></td></tr><tr style="height: 0pt;"><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><br></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><br></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">.002</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Create Process with Token</span></p></td></tr><tr style="height: 0pt;"><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><br></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><br></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">.003</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Make and Impersonate Token</span></p></td></tr><tr style="height: 0pt;"><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Enterprise</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">T1098</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Account Manipulation</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Do not allow domain administrator accounts to be used for day-to-day operations.</span></p></td></tr><tr style="height: 0pt;"><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><br></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><br></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">.001</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Additional Cloud Credentials</span></p></td></tr><tr style="height: 0pt;"><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><br></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><br></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">.002</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Additional Email Delegate Permissions</span></p></td></tr><tr style="height: 0pt;"><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><br></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><br></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">.003</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Additional Cloud Roles</span></p></td></tr><tr style="height: 0pt;"><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Enterprise</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">T1059</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Command and Scripting Interpreter</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Consider restricting PowerShell execution policy to administrators.</span></p></td></tr><tr style="height: 0pt;"><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><br></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><br></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">.001</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">PowerShell</span></p></td></tr><tr style="height: 0pt;"><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><br></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><br></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">.008</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Network Device CLI</span></p></td></tr><tr style="height: 0pt;"><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><br></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><br></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">.009</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Cloud API</span></p></td></tr><tr style="height: 0pt;"><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Enterprise</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">T1136</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Create Account</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Limit the number of accounts with permissions to create other accounts.</span></p></td></tr><tr style="height: 0pt;"><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><br></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><br></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">.001</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Local Account</span></p></td></tr><tr style="height: 0pt;"><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><br></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><br></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">.002</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Domain Account</span></p></td></tr><tr style="height: 0pt;"><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><br></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><br></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">.003</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Cloud Account</span></p></td></tr><tr style="height: 0pt;"><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Enterprise</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">T1555</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Credentials from Password Stores</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Limit accounts and services with permission to query password stores.</span></p></td></tr><tr style="height: 0pt;"><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><br></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><br></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">.006</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Cloud Secrets Management Stores</span></p></td></tr><tr style="height: 0pt;"><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Enterprise</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">T1484</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Domain or Tenant Policy Modification</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Use least privilege and protect administrative access to the Domain Controller.</span></p></td></tr></tbody></table></div><br><h2 style="line-height: 1.2; margin-top: 12pt; margin-bottom: 8pt;"><span style="font-size: 12pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-weight: 700; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">M1050 - Exploit Protection</span></h2><div align="left" style="margin-left: 0pt;"><table style="border: none; border-collapse: collapse;"><colgroup><col><col><col><col></colgroup><tbody><tr style="height: 0pt;"><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; background-color: rgb(46, 117, 182); padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(255, 255, 255); font-weight: 700; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Domain</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; background-color: rgb(46, 117, 182); padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(255, 255, 255); font-weight: 700; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">ID</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; background-color: rgb(46, 117, 182); padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(255, 255, 255); font-weight: 700; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Name</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; background-color: rgb(46, 117, 182); padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(255, 255, 255); font-weight: 700; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Use</span></p></td></tr><tr style="height: 0pt;"><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Enterprise</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">T1189</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Drive-by Compromise</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Use WDEG and EMET to mitigate exploitation behavior.</span></p></td></tr><tr style="height: 0pt;"><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Enterprise</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">T1190</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Exploit Public-Facing Application</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Web Application Firewalls may limit exposure of applications.</span></p></td></tr><tr style="height: 0pt;"><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Enterprise</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">T1203</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Exploitation for Client Execution</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Use WDEG and EMET to mitigate exploitation behavior.</span></p></td></tr><tr style="height: 0pt;"><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Enterprise</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">T1212</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Exploitation for Credential Access</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Use WDEG and EMET to mitigate exploitation behavior.</span></p></td></tr><tr style="height: 0pt;"><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Enterprise</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">T1211</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Exploitation for Defense Evasion</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Use WDEG and EMET to mitigate exploitation behavior.</span></p></td></tr><tr style="height: 0pt;"><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Enterprise</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">T1068</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Exploitation for Privilege Escalation</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Use WDEG and EMET to mitigate exploitation behavior.</span></p></td></tr><tr style="height: 0pt;"><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Enterprise</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">T1210</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Exploitation of Remote Services</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Use WDEG and EMET to mitigate exploitation behavior.</span></p></td></tr><tr style="height: 0pt;"><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Enterprise</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">T1218</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">System Binary Proxy Execution</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Use EMET ASR to block trusted binary bypass methods.</span></p></td></tr><tr style="height: 0pt;"><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><br></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><br></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">.010</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Regsvr32</span></p></td></tr><tr style="height: 0pt;"><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><br></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><br></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">.011</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Rundll32</span></p></td></tr><tr style="height: 0pt;"><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><br></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><br></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">.015</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Electron Applications</span></p></td></tr></tbody></table></div><br><h2 style="line-height: 1.2; margin-top: 12pt; margin-bottom: 8pt;"><span style="font-size: 12pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-weight: 700; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">M1017 - User Training</span></h2><div align="left" style="margin-left: 0pt;"><table style="border: none; border-collapse: collapse;"><colgroup><col><col><col><col></colgroup><tbody><tr style="height: 0pt;"><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; background-color: rgb(46, 117, 182); padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(255, 255, 255); font-weight: 700; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Domain</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; background-color: rgb(46, 117, 182); padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(255, 255, 255); font-weight: 700; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">ID</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; background-color: rgb(46, 117, 182); padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(255, 255, 255); font-weight: 700; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Name</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; background-color: rgb(46, 117, 182); padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(255, 255, 255); font-weight: 700; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Use</span></p></td></tr><tr style="height: 0pt;"><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Enterprise</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">T1557</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Adversary-in-the-Middle</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Train users to be suspicious about certificate errors.</span></p></td></tr><tr style="height: 0pt;"><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Enterprise</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">T1185</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Browser Session Hijacking</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Close all browser sessions regularly.</span></p></td></tr><tr style="height: 0pt;"><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Enterprise</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">T1213</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Data from Information Repositories</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Develop and publish policies defining acceptable stored information.</span></p></td></tr><tr style="height: 0pt;"><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Enterprise</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">T1189</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Drive-by Compromise</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Train users to be aware of social engineering techniques.</span></p></td></tr><tr style="height: 0pt;"><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Enterprise</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">T1667</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Email Bombing</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Train users to be aware of social engineering via e-mail bombing.</span></p></td></tr><tr style="height: 0pt;"><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Enterprise</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">T1657</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Financial Theft</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Train users to identify social engineering for financial theft.</span></p></td></tr><tr style="height: 0pt;"><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Enterprise</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">T1656</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Impersonation</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Train users on impersonation tricks and how to counter them.</span></p></td></tr><tr style="height: 0pt;"><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Enterprise</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">T1036</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Masquerading</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Train users not to open unknown email attachments or links.</span></p></td></tr><tr style="height: 0pt;"><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Enterprise</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">T1621</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">MFA Request Generation</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Train users to only accept 2FA requests they initiated.</span></p></td></tr><tr style="height: 0pt;"><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Enterprise</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">T1003</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">OS Credential Dumping</span></p></td><td style="border-width: 0.5pt; border-style: solid; border-color: rgb(204, 204, 204); vertical-align: top; padding: 3pt 5pt; overflow: hidden; overflow-wrap: break-word;"><p style="margin-top: 0pt; margin-bottom: 0pt; line-height: 1.2;"><span style="font-size: 10pt; font-family: Arial, sans-serif; color: rgb(0, 0, 0); font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; vertical-align: baseline;">Limit credential overlap by not reusing passwords.</span></p></td></tr></tbody></table></div>