APT Campaigns
- 10 courses
- 1 hours
In today's rapidly evolving cybersecurity landscape, organizations face increasingly sophisticated and persistent cyber threats. Advanced Persistent Threats (APTs) represent some of the most complex and insidious forms of cyber attacks, often orchestrated by well-funded and highly skilled adversaries. This course delves deep into understanding, detecting, and defending against specific APTs through immersive attack and defense emulations and hands-on labs.
Courses in this path
Volt Typhoon
The volt Typhoon group is seeking to pre-position itself in IT and OT networks for disruptive or destructive cyberattacks against critical infrastructure. With these courses and labs you'll first get hands-on with the tactics, techniques and procedures used by Volt Typhoon as they carried out reconnaissance of networks and devices, dumped credentials from domain controllers, and covered their tracks by removing indicators of compromise. Next you'll learn the practical skills needed to detect and block these activities, and apply tools to catch the attacks in progress. Finally, you'll gain knowledge to implement controls to reduce the risk of these attacks taking place in your own environment.
Sandworm
Sandworm is a highly sophisticated and persistent Advanced Persistent Threat (APT) group linked to Russian military intelligence (GRU). Active since at least 2009, it has been responsible for several major cyberattacks, particularly targeting Ukraine, NATO members, and other global entities. With these courses and labs you'll first get hands-on with the tactics, techniques and procedures used by Sandworm. Next, you'll learn the practical skills needed to detect and block these activities, and apply tools to catch the attacks in progress. Finally, you'll gain knowledge to implement controls to reduce the risk of these attacks taking place in your own environment.