Advanced Persistent Threat

What Is an Advanced Persistent Threat?

An advanced persistent threat is an ongoing and covert cyber-attack, generally targeting a specific organization or network resource with the aim or maliciously inflicting damage or obtaining information of monetary value. Advanced persistent threats are characterized by their use of advanced techniques to exploit known and unknown system vulnerabilities, and the fact they are continuous in nature – that is, advanced persistent threats last over a long period of time until they are either discovered and interrupted, or the attackers achieve their goal.

State-sponsored attackers are often responsible for advanced persistent threats because they have the resources, the know-how, and the patience to execute these types of attacks. Advanced persistent threats (APTs) usually consist of multiple stages including an initial intrusion, reconnaissance, lateral movement, and data exfiltration. Oftentimes, threat actors may remain in a network for weeks or even years before they are detected since they avoid well known exploits.

APT attacks target organizations that have valuable information such as military secrets or intellectual property. Therefore, high-risk sectors include federal government, technology and manufacturing, but other industries like finance, healthcare, retail and media, have also experienced data breaches caused by APTs.

What does LightCyber have to do with it?

LightCyber Magna monitors all internal network traffic, profiling the normal behavior of every single user and endpoint and detecting advanced persistent threats before damage is done. Watch the Webinar “Advanced Persistent Threat: Which Is the Key Word?” to learn how attackers inevitably get into our networks, why they succeed, and how LightCyber Magna’s Active Breach Detection can detect these threats using network-centric machine learning and endpoint analysis.

<< Back to Glossary