| ID | Name |
|---|---|
| T2039.001 | Bash History |
| T2039.002 | Credentials In Files |
| T2039.003 | Private Keys |
| T2039.004 | VPN Credential |
Adversaries may search unsecured VPN credentials to gain unauthorized access to vehicle backend servers. These credentials are intended to protect the backend server and only allow legitimate vehicles to access it. However, if these VPN credentials are not properly secured, adversaries can easily extract them and directly connect to the backend server using without the legitimate vehicles.
This type of attack technique cannot be easily mitigated with preventive controls since it is based on the abuse of system features.