Question 14 - Palo Alto Networks Cybersecurity Practitioner Exam Questions [June 2026 Update]

Q: 14

What are two characteristics of an advanced persistent threat (APT)? (Choose two.)

Options

Correct Answer:

A, B

Explanation

An Advanced Persistent Threat (APT) is defined by its core characteristics. The "Advanced" aspect refers to the use of sophisticated and diverse techniques to breach a network, which includes employing multiple attack vectors (e.g., spear-phishing, zero-day exploits, supply chain attacks) to increase the chances of success. The "Persistent" nature means the attacker's goal is not a one-time event but a long-term campaign. This involves a repeated pursuit of their objective, maintaining a stealthy presence within the target's network over an extended period to exfiltrate data or conduct espionage. These two characteristics distinguish APTs from common, less sophisticated cyberattacks.

Why Incorrect

C. Reduced interaction time: This is incorrect. APTs are characterized by a "low and slow" approach to avoid detection, which typically involves extended, not reduced, interaction time within the network.

D. Tendency to isolate hosts: This is incorrect. The primary goal of an APT is often lateral movement to access more valuable assets within the network, which is the opposite of isolating hosts.

References

1. Palo Alto Networks Official Documentation: In the "What Is an Advanced Persistent Threat (APT)?" resource

it is stated

"APTs use multiple attack vectors to gain access to a network... The goal of most APTs is to maintain long-term

ongoing access to the network." This directly supports the use of multiple vectors and the persistent pursuit of objectives.

Source: Palo Alto Networks. (n.d.). What Is an Advanced Persistent Threat (APT)? Palo Alto Networks Cybersecurity Glossary. Retrieved from https://www.paloaltonetworks.com/cyberpedia/what-is-an-advanced-persistent-threat-apt

2. Academic/Governmental Publication: The National Institute of Standards and Technology (NIST) defines an APT as an adversary that uses "multiple attack vectors (e.g.

cyber

physical

and deception)" and whose objectives "typically include establishing and extending footholds within the information technology infrastructure of the targeted organizations for purposes of exfiltrating information

undermining or impeding critical aspects of a mission... or positioning itself to carry out these objectives in the future." This confirms the use of multiple vectors and the long-term

persistent nature of the threat.

Source: NIST Special Publication 800-39

Managing Information Security Risk

Section 2.3

Page 7. Published March 2011.

Premium Access Includes

FLASH OFFER

avail 10% DISCOUNT on YOUR PURCHASE