CCC.IAM.TH07: Identity Inherits Excessive Permissions Through Group Membership
Threat ID:CCC.IAM.TH07
Title:Identity Inherits Excessive Permissions Through Group Membership
Description:
An identity principal becomes a member of one or more IAM groups, and the combined policies of these groups grant permissions beyond what is necessary for the principal's function. This "privilege creep" through group inheritance complicates auditing and can lead to an identity having standing access to sensitive resources.
Related Capabilities
| ID | Title | Description |
|---|---|---|
| CCC.IAM.F05 | IAM Groups | Ability to create, manage, list and delete IAM groups. IAM group is a collection of users, roles or other groups. |
External Mappings
| Reference ID | Entry ID | Strength | Remarks |
|---|---|---|---|
MITRE-ATT&CK | T1098 | 0 | Account Manipulation |