diff --git a/services/database/relational/threats.yaml b/services/database/relational/threats.yaml
index 6e70ed5f..9deacba3 100644
--- a/services/database/relational/threats.yaml
+++ b/services/database/relational/threats.yaml
@@ -91,3 +91,22 @@ threats:
       - CCC.F06
     mitre_technique:
       - T1556
+
+  - id: CCC.RDMS.TH14
+    title: DB backup is uninentionally restored
+    description: A threat actor restores a database backup thereby destroying data.
+    features:
+      - CCC.F11
+    mitre_technique:
+      - T1485
+
+  - id: CCC.RDMS.TH15
+    title: brute force attack against the database
+    description: |
+      threat actor uses brute force attack to discover
+      database user password, threat actor then has access to the
+      database user
+    features:
+      - CCC.RDMS.F07
+    mitre_technique:
+      - T1110