Oil companies, Internet technology firms, defense contractors, and even computer-security firms have all been targeted by persistent adversaries bent on stealing intellectual property and sensitive business information. For many in the industry, the question is no longer if they have been breached, but how deeply, said Richard Bejtlich, chief security officer of Mandiant. Separating persistent threats from more opportunistic cybercrime-focused attacks is not easy, but can help inform defense. In some cases, attackers have rented botnets; in others, they’ve used standard cybercrime tools.”]
Source: https://www.darkreading.com/attacks-breaches/apt-or-everyday-cybercrime-how-to-tell