Advanced persistent threats describe attackers capable of breaching data infrastructure through continuous targeting and then remaining within that infrastructure, undetected, to locate and access valuable information.
Prior to APTs, the cyberthreat landscape was composed almost entirely of automated, nonspecific threats.
Those threats typically rely on a single technique that remains consistent across all platforms (DDoS, virus, Trojan, file-based, etc.) that can be defeated with universal, perimeter-oriented solutions (web application firewalls, intrusion detection and anti-virus software, etc.).
That remained the state of play until quite recently, and today’s cybersecurity compliance standards reflect that earlier landscape — they’re designed to protect against elementary threats.
The ability to persist has made the whole idea of prevention obsolete.
Effective security now requires organisations to assume penetration and continually scan their environments for malicious activity.
Find out what strategies are being used to detect and counteract these threats.