APT

APT stands for Advanced Persistent Threat. An APT is a prolonged and targeted cyberattack in which an intruder gains access to a network and remains undetected for an extended period of time. APT attacks are typically conducted by groups of sophisticated, well-resourced threat actors, often state-sponsored, who aim to steal sensitive information rather than cause immediate damage.

The 'Advanced' part refers to the sophisticated techniques used. The 'Persistent' aspect refers to an external command and control system continuously monitoring and extracting data from a specific target. The 'Threat' component refers to the human element — a person or a group actively pursuing a goal and adapting to the defender's efforts to resist.

APT groups include APT28 (also known as Fancy Bear), APT29 (also known as Cozy Bear), Zero-day vulnerability, CTI, XDR, Zero Trust, SOC, and many other sophisticated groups that conduct cyber espionage and theft of sensitive information.

Sekoia.io's Threat Detection & Research team actively tracks APT groups, including LuckyMouse, Turla, Calisto, APT29, APT31, Roaming Mantis, APT28, Vice Society. Their research helps organizations stay informed about the latest threats and tactics used by these groups.

We are a cybersecurity software publisher. We provide SOC and MSSP teams with a turnkey operational security platform (SOC platform). Through our XDR platform, CTI tool and threat intelligence platform, we enable our users to neutralize cyber threats, regardless of the attack surface.