Apt — CompTIA CySA+ (CS0-003) Practice Questions
An advanced persistent threat is a sophisticated, long-duration attack campaign, typically carried out by well-resourced threat actors such as nation-states or organized criminal groups, who maintain stealthy, persistent access to a target environment over weeks or months. The CySA+ exam covers how analysts identify APT activity through indicators such as living-off-the-land techniques, low-and-slow exfiltration patterns, custom malware, and command-and-control beaconing that blends with normal traffic. Analysts must understand the MITRE ATT&CK framework and threat intelligence feeds to recognize APT tactics, techniques, and procedures and to differentiate targeted intrusions from opportunistic attacks.
Free questions on apt
Which of the following provides the BEST real-time visibility into advanced persistent threats (APTs) on a network?
Free question · medium · full answer + explanation
More apt questions in the full bank
- You need to build advanced persistent threat hunting capability. What approach? Unlock answer & explanation →
- You detect a potential APT campaign. What is the best response? Unlock answer & explanation →
- How to distinguish APT from commodity? Unlock answer & explanation →