The challenges of tracking APT attacks

2022-11-18 06:00

Advanced persistent threats are a type of attack that's usually carried out or sponsored by a nation-state, and unlike other types of malware attacks, these pose their own challenges.

Typically, an APT threat actor will perform some kind of reconnaissance on their target, and then target their victim by sending, for example, a spear-phishing email.

The type of attack through the email will vary based on the APT. This will enable the threat actor to gain initial entry into the victim's machine.

This is particularly important because it will enable them to set up what's going to follow next, i.e. getting the communication between the victim and the threat actor, via their command-and-control server.

Another important phase is the discovery within the victim's machine and network itself.

In this Help Net Security video, Jérôme Segura, Senior Director of Threat Intelligence at Malwarebytes, talks about the complexities of ATP attacks determination.

News URL

https://www.helpnetsecurity.com/2022/11/18/atp-attack-challenges-video/

#APT #attack #tracking

News URL

Related news