CAPEC-507: Physical Theft
An adversary gains physical access to a system or device through theft of the item. Possession of a system or device enables a number of unique attacks to be executed and often provides the adversary with an extended timeframe for which to perform an attack. Most protections put in place to secure sensitive information can be defeated when an adversary has physical access and enough time.
Last updated
Overview
CAPEC-507 (Physical Theft) is a meta-level attack pattern catalogued by MITRE in the Common Attack Pattern Enumeration and Classification (CAPEC). It describes a recurring method attackers use to exploit software weaknesses.
What the attacker needs
Prerequisites
- This type of attack requires the existence of a physical target that an adversary believes hosts something of value.
How to mitigate it
Defenses that reduce the risk of CAPEC-507.
- To mitigate this type of attack, physical security techniques such as locks doors, alarms, and monitoring of targets should be implemented.
Frequently asked questions
Common questions about CAPEC-507.
- What is CAPEC-507?
- An adversary gains physical access to a system or device through theft of the item. Possession of a system or device enables a number of unique attacks to be executed and often provides the adversary with an extended timeframe for which to perform an attack. Most protections put in place to secure sensitive information can be defeated when an adversary has physical access and enough time.
- How do you prevent CAPEC-507?
- To mitigate this type of attack, physical security techniques such as locks doors, alarms, and monitoring of targets should be implemented.