- Threat Detection, Investigation, and Response (TDIR) Use Case Categories
- Threat Detection, Investigation, and Response (TDIR) Use Case Categories Hierarchy
- Compromised Insiders Use Case Category
- External Threats Use Case Category
- Malicious Insiders Use Case Category
PrevNext
Account Manipulation Scenario
Learn about the Privilege Abuse Account Manipulation scenario.
The Account Manipulation scenario describes when someone modifies access controls; for example, a system administrator adds themself to a new group with elevated privileges to give themselves more access, or adds or removes a temporary user to hide their identity while they do something malicious like accessing, hoarding, or exfiltrating data.
In the Threat Detection, Investigation, and Response (TDIR) Use Case Categories hierarchy, the Account Manipulation scenario falls under the Privilege Abuse use case.