What Does Advanced Persistent Threat (APT) Mean?
An advanced persistent threat (APT) is a cyberattack launched by an attacker with substantial means, organization and motivation to carry out a sustained assault against a target.
The attacker's goal is to remain hidden over an extended period of time and incrementally obtain the permissions required to achieve the attack's objectives.
APTs differ from zero day and other types of cyberattacks in a number of ways:
- This type of cybersecurity attack is expensive to conduct so it is often aimed at highly valuable targets, such as government facilities, defense contractors, media outlets and manufacturers of high-tech products.
- Threat actors often use legitimate credentials they have acquired by exploiting known vulnerabilities, using social engineering tactics and conducting brute force attacks.
- The attacker will often develop and deploy customized malware and seek to compromise trusted third-party software.
- APT threat actors will spend time and money to monitor their target closely and pivot attack vectors when necessary.