Valid 312-85 Dumps shared by ExamDiscuss.com for Helping Passing 312-85 Exam! ExamDiscuss.com now offer the newest 312-85 exam dumps, the ExamDiscuss.com 312-85 exam questions have been updated and answers have been corrected get the newest ExamDiscuss.com 312-85 dumps with Test Engine here:
John, a professional hacker, is trying to perform APT attack on the target organization network. He gains access to a single system of a target organization and tries to obtain administrative login credentials to gain further access to the systems in the network using various techniques. What phase of the advanced persistent threat lifecycle is John currently in?
Correct Answer: C
The phase described where John, after gaining initial access, is attempting to obtain administrative credentials to further access systems within the network, is known as the 'Expansion' phase of an Advanced Persistent Threat (APT) lifecycle. This phase involves the attacker expanding their foothold within the target's environment, often by escalating privileges, compromising additional systems, and moving laterally through the network. The goal is to increase control over the network and maintain persistence for ongoing access. This phase follows the initial intrusion and sets the stage for establishing long-term presence and eventual data exfiltration or other malicious objectives.References: * MITRE ATT&CK Framework, specifically the tactics related to Credential Access and Lateral Movement * "APT Lifecycle: Detecting the Undetected," a whitepaper by CyberArk
