CompTIA
SY0-301 · Question #423
SY0-301 Question #423: Real Exam Question with Answer & Explanation
The correct answer is B: Advanced persistent threat. A well-organized, nation-state-sponsored group conducting sophisticated and targeted long-term attacks is the defining characteristic of an Advanced Persistent Threat.
Question
After analyzing and correlating activity from multiple sensors, the security administrator has determined that a group of very well organized individuals from an enemy country is responsible for various attempts to breach the company network, through the use of very sophisticated and targeted attacks. Which of the following is this an example of?
Options
- APrivilege escalation
- BAdvanced persistent threat
- CMalicious insider threat
- DSpear phishing
Explanation
A well-organized, nation-state-sponsored group conducting sophisticated and targeted long-term attacks is the defining characteristic of an Advanced Persistent Threat.
Common mistakes.
- A. Privilege escalation is a specific attack technique used to gain elevated permissions on a system, not a classification of a threat actor or campaign.
- C. A malicious insider threat originates from within the organization such as a disgruntled employee, not from an external nation-state group.
- D. Spear phishing is a targeted email-based social engineering tactic and represents only one possible technique an APT might use, not the overall threat classification.
Concept tested. Advanced Persistent Threat actor classification
Reference. https://www.cisa.gov/topics/cyber-threats-and-advisories/advanced-persistent-threats
Community Discussion
No community discussion yet for this question.