The processes and tools behind a true APT campaign: Weaponization and delivery

In this stage of the APT campaign, attackers design a malicious payload and choose the most effective method for delivering it to its intended target

Become An Insider

Sign up now and get FREE access to hundreds of Insider articles, guides, reviews, interviews, blogs, and other premium content. Learn more.

This article is part of a series about APT campaigns. The other topics covered in this series are reconnaissance, exploitation and installation, command and control, and exfiltration.

In part two of a series on understanding the processes and tools behind an APT-based incident, CSO examines the weaponization and delivery aspect of an attacker's campaign. This is where the serious work begins, and marks the first hurdle an attacker needs to overcome.

As mentioned earlier in the series, it's important to remember that the difference between a targeted APT-based incident and a garden variety cyberattack is intent, or the overall objectives of the person(s) behind it, but not the tools, tactics, or procedures used.

To continue reading this article register now