Select Page

Preventing an APT attack | Pluralsight

Published: September 27, 2022

Mitigating risks from APT requires first understanding your environment (i.e. baseline) to detect and respond to anomalies. That takes planning (identifying sensitive data, isolating resources, collecting baselines, and so forth), training (such as incident response exercises), and continuous monitoring. It also calls for applying security best practices (e.g., defense in depth, separation of duties, least privilege, and more).

Most important, since a threat may already be inside, companies need to implement a Zero Trust mindset. Don’t trust users, servers, and applications just because they are “inside” the organization’s network. You need to perform access control to identify the requestor, no matter where they are.

Implementing a Zero Trust strategy and mitigating risks of APT attacks require full support from CIOs and business leaders, as well as money, people, and time.