abstract:APT1 is a term used by Mandiant to denote a group of people who are responsible for a particular set of advanced persistent threats. In February 2013, Mandiant issued a report arguing that this organization is Unit 61398 of the People's Liberation Army of China.
In fact, when I spoke with Richard Bejtlich, chief security officer at Mandiant and a well-known author and blogger on network security, he argued that APT1 is actually a relatively sloppy group of hackers, and that its mistakes were what part of what allowed Mandiant to profile the unit in such detail.