A security analyst reviews a threat intelligence report on a recent attack against a major defense contractor. The report indicates the threat actor operated for over 18 months, using several zero-day vulnerabilities to remain undetected. The primary goal appeared to be the long-term exfiltration of proprietary weapons system schematics. The TTPs observed were highly sophisticated and well-funded, with no evidence of financial motivation. Which of the following threat actors is MOST likely responsible?
The attack characteristics described-long-term persistence (Advanced Persistent Threat behavior), high sophistication (use of zero-day exploits), substantial resources, and a focus on espionage (stealing schematics) rather than financial gain-are all hallmarks of a nation-state actor. Organized crime is primarily motivated by profit. Hacktivists are typically motivated by ideology and may lack the resources for such a prolonged and sophisticated campaign. Script kiddies lack the skills, resources, and motivation for this type of attack.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is a zero-day vulnerability?
Open an interactive chat with Bash
What are TTPs in cybersecurity?
Open an interactive chat with Bash
Why are nation-state actors considered highly sophisticated?