Advanced Persistent Threat

From ACT Wiki
Revision as of 06:43, 24 January 2022 by imported>Doug Williamson (Create page - source - ACT - https://www.treasurers.org/hub/blog/payments-january)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigationJump to search

Cybersecurity - cyberthreat.

(APT).

Advanced Persistent Threat is characterised by:

  • Cybercriminals with sophisticated levels of expertise and significant resources.
  • Multiple different attack vectors including cyber, physical, and deception.
  • Objectives of establishing and extending footholds deep within the information technology infrastructure of organisations.
  • Repeated attacks over an extended period of time, adapting to a defender’s efforts to resist it, and with determination to maintain the level of interaction needed to execute its objectives.

Source: US Computer Security Resource Center (CSRC).


Combatting Advanced Persistent Threat (APT)
"One of the most sophisticated and lucrative types of payment fraud now and for the future seems to be Advanced Persistent Threat (APT).
It must be considered as a potential high risk not only for payment infrastructures but also for all network related payment ecosystems.


Measures against APTs should start with security defence-in-depth strategy and architecture but must go beyond and include advanced security data analytics, technologies of early detection with real-time reporting and visualisation.
Mechanisms to recognise APTs signs and patterns can also be effective."
Update on the Payments landscape - Naresh Aggarwal - Associate Policy & Technical Director - Association of Corporate Treasurers – January 2022.


See also

Retrieved from ‘https://wiki.treasurers.org/w/index.php?title=Advanced_Persistent_Threat&oldid=1776