Despite the perception that hackers uses advanced knowledge and skill, a new report finds that at least some of these techniques really only require basic skills. The attacks were examined and utilized and found out that Advanced Persistent Threats require only basic skills – it only requires the weakness of the Microsoft NTLM protocol, Windows skills and a software readily available online.

 

In APT attacks, all that is needed is a widely used protocol and a Windows account with basic privileges. Attackers use spear phishing because the easiest access of a network is through human error.

Read the rest of the news here: http://www.imperva.com/docs/HII_The_Non-Advanced_Persistent_Threat.pdf