Loyalty Points Abuse
ID: | TEQ-063 |
Phase(s): | Attack Execution |
Tactic(s): | Payment Detail Abuse |
Targeting an organisation that has a loyalty or bonus points scheme, an adversary steals or otherwise illegitimately uses loyalty or bonus points to perform transactions either on the targeted site or on a third party affiliate site.