AE03 Network Attacks To Cloud Application
| Context | Remote user interacts with a cloud application |
| Problem | Remote side can perform remote malicious activities based on misconfiguration or vulnerabilities of the cloud application |
| Solution | Apply firewall service; Apply bastion host; Apply intrusion detection; Apply intrusion prevention; Apply Web Application Firewall (WAF); Apply Cyber Threat Intelligence (CTI) service; |
| References | Automated Threat Detection, Web Application Firewall [Rath] |
| Type | ns:type_ThreatPattern |
| Victim | su:comp_CloudApplication |
| Aggressor | su:comp_RemoteUser |
| Aggr. role | ns:role_Client |
| STRIDE | |
| Threat | ns:threat_txTrafficAnalysisAndSniffing; ns:threat_txCovertNetworkChannel; ns:threat_txRoutePoisoning; ns:threat_txUseOfAbnormalPacketSizes; ns:threat_txUseOfReservedProtocolPackets; ns:threat_txProtocolStateExploitation; ns:threat_txScanningInformationGathering; ns:threat_txProbingVulnerabilityChecking |