Advanced Persistent Threat (APT) Testing
An Advanced Persistent Threat (APT) is an attack vector where a malicious actor seeks to gain access to a targeted network through a series of synchronized (yet seemingly unrelated) attacks. The sole purpose is to breach the system undetected and remove data over an extended period of time without being discovered. An APT attack is a campaign of coordinated multi-tiered strikes against the target’s people, processes and technology. The threat is typically associated with nation-states or well-funded and financially motivated threat actors.
An APT campaign is usually comprised of synchronized social engineering and technical penetration attacks such as a combination of phishing emails, spear phishing, malicious code and rootkit installations, usually via trusted applications or connections and exploiting “zero-day” vulnerabilities.
Once access is achieved, the attacker establishes a back door and seeks to gather valid user and administrative credentials and move laterally across the targeted network undetected, installing more back doors, bogus utilities and ghost infrastructures for distributing advanced malware designed to remove sensitive data such as intellectual property, unnoticed. The attack method of operation is to hide in plain sight and become invisible to existing security measures by disguising itself as an authorised activity. An APT is an extremely sophisticated and dangerous threat that takes a specific testing methodology to identify.
Risk Crew delivers a unique, comprehensive and effective APT penetration testing service to assess and confirm whether your defences can detect and deter this severe threat.