An advanced persistent threat (APT) is a prolonged, aimed attack on a specific target. Cyber attackers gain access to a system or network and remain there for an extended period without being detected. The goal of APT attackers is generally stealing data and intellectual property. Despite all the awareness, technological advancements, and massive investment, the fight against APTs is a losing battle. A false sense of security is a belief that the organization is safer than it is. We researched whether organizations have a false sense of security against APT attacks and what contributes to that belief. Our research indicated that employees were not confident about organizations’ cybersecurity posture. In this paper, we discuss one of our research contributions, which suggests remediation strategies that organizations can employ to increase the effectiveness of security controls against APT attacks.
Vuggumudi, Srinivasulu; Wang, Yong; Ragothaman, Kaushik; Cherie; and Liu, Jun, "Improving the Effectiveness of Security Controls to Prevent APT Attacks" (2022). MWAIS 2022 Proceedings. 11. https://aisel.aisnet.org/mwais2022/11