Shulou(Shulou.com)06/02 Report--

This article mainly introduces the characteristics of apt attacks in the computer network, the article is very detailed, has a certain reference value, interested friends must read it!

The characteristics of apt attacks are: (1) strong pertinence; (2) tight organization; (3) long duration; (4) high concealment; (5) indirect attack. The targets of apt attacks are clear, and most of them are targets with rich data and intellectual property rights.

APT attacks have five distinct characteristics different from traditional network attacks: strong pertinence, tight organization, long duration, high concealment and indirect attacks.

1. Highly targeted

The targets of APT attacks are clear, and most of them are targets with rich data / intellectual property rights, and the data obtained are usually trade secrets, national security data, intellectual property rights, etc.

Compared with traditional attacks to steal personal information, APT attacks only focus on pre-specified targets, and all attack methods are only targeted at specific targets and specific systems.

2. Tightly organized

Successful APT attacks can bring huge commercial benefits, so attackers usually exist in the form of organizations, formed by skilled hackers, division of labor and cooperation, long-term premeditated attacks. They have sufficient resources both economically and technically, and have the conditions and ability to focus on APT research for a long time.

3. Long duration

APT attacks have strong persistence. After long-term preparation and planning, attackers usually lurk in the target network for months or even years, through repeated infiltration, constantly improve attack paths and methods, and launch continuous attacks, such as zero-day vulnerability attacks.

4. High concealment

According to the characteristics of the target, the APT attack can bypass the defense system of the target network and steal data or destroy it. In the information collection stage, attackers often make use of search engines, advanced crawlers and data leakage to make it difficult for the attackers to detect; in the attack stage, based on the results of sniffing the target, design and develop highly targeted Trojans and other malicious software. bypass the target network defense system and conceal the attack.

5. Indirect attack

APT attacks are different from the direct attacks of traditional network attacks. They usually use third-party websites or servers as springboards and set up malicious programs or Trojans to infiltrate the target. Malicious programs or Trojans lurk in the target network, which can be remotely attacked by the attacker or unintentionally triggered by the attacker.

These are all the contents of this article entitled "what are the characteristics of apt attacks in computer networks?" Thank you for reading! Hope to share the content to help you, more related knowledge, welcome to follow the industry information channel!

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.