An advanced persistent threat (APT) is a sophisticated, sustained cyberattack in which an intruder establishes an undetected presence in a network in order to steal sensitive data over a prolonged period of time.
The advanced persistent threat pursues its objectives repeatedly over an extended period; adapts to defenders’ efforts to resist it; and is determined to maintain the level of interaction needed to execute its objectives.
Main Goals of APTs
Cyber Espionage, including theft of intellectual property or state secrets.
eCrime for financial gain.
Hacktivism.
Destruction.
Advanced Persistent Threat Examples
GhostNet — based in China, attacks were conducted by spear phishing emails containing malware.
Stuxnet — a worm used to attack Iran’s nuclear program, which was delivered via an infected USB device, and inflicted damage to centrifuges used to enrich Uranium.
We See What Others Cannot