On 17 December 2020, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) issued an Alert regarding recent hacking attacks targeting U.S. government agencies and private sector entities, which reads in part as follows: “The Cybersecurity and Infrastructure Security Agency (CISA) is aware of compromises of U.S. government agencies, critical infrastructure entities, and private sector organizations by an advanced persistent threat (APT) actor beginning in at least March 2020. This APT actor has demonstrated patience, operational security, and complex tradecraft in these intrusions. CISA expects that removing this threat actor from compromised environments will be highly complex and challenging for organizations.”

To read the full text of the Alert, please click here.

Analyst Comment: The term “Advanced Persistent Threat” is commonly used in the cybersecurity domain to describe a well-resourced and highly coordinated hacking group, usually one that is part of, or working for, a nation-state’s intelligence service or military.