Skip to content

Authorized principal account


ID: MS-T816
Tactic: Initial access
MITRE technique: T1078.004

Attackers may steal account credentials using one of the credential access techniques or capture an account earlier in their reconnaissance process through social engineering to gain initial access. An authorized principal account can result in full control of storage account resources.