CCC.VPC.TH01: Unauthorized Access via Insecure Default Networks
Threat ID:CCC.VPC.TH01
Title:Unauthorized Access via Insecure Default Networks
Description:
Default network configurations may include insecure settings and open firewall rules,leading to unauthorized access and potential data breaches.
Related Capabilities
| ID | Title | Description |
|---|---|---|
| CCC.VPC.F01 | Isolated Custom Network Creation | Ability to create a virtual network that is isolated from other users of the same public cloud. |
External Mappings
| Reference ID | Entry ID | Strength | Remarks |
|---|---|---|---|
MITRE-ATT&CK | T1040 | 0 | - |
Controls
| ID | Title | Objective | Control Family | Threat Mappings | Guideline Mappings | Assessment Requirements |
|---|---|---|---|---|---|---|
| CCC.VPC.C01 | Restrict Default Network Creation | Restrict the automatic creation of default virtual networks and related resources during subscription initialization to avoid insecure default configurations and enforce custom network policies. | Network Security | 1 | 4 | 1 |