Security experts say IT and security managers need to be at the ready for these highly targeted attacks. These types of “low and slow” attacks may be more common than once thought, experts say. The TJX incident is a good example of a multistage, low, and slow attack, says Trusteer’s Amit Klein. The first clue that TJX’s breach wasn’t a smash-and-grab job were configuration changes on some of its servers. The attackers first compromised the wireless LAN, then eavesdropped on TJX employee logins to collect credentials.”]
Source: https://www.darkreading.com/attacks-breaches/slow-and-silent-targeted-attacks-on-the-rise