Detections
- Home
- - Detections
- -DT011
- ID: DT011
- Created: 25th May 2024
- Updated: 25th July 2024
- Platforms: Windows, Linux, MacOS
- Contributor: The ITM Team
Cyber Deception, Honey User
In cyber deception, a "honey user" (or "honey account") is a decoy user account designed to detect and monitor malicious activities. These accounts attract attackers by appearing legitimate or using common account names, but any interaction with them is highly suspicious and flagged for investigation. Honey users can be deployed in various forms, such as Active Directory users, local system accounts, web application users, and cloud users.