Advanced Persistent Threats, or APTs, are a hot topic in the infosecurity world, as such attacks usually employ the most sophisticated hacker tools. Majority of the widely publicized attacks are focused on nation-state cyber espionage and are targeting high-profile institutions, such as military and governments. However, things are about to change: APTs inaugurated their presence in the commercial sector, or, to be more exact, in the banking sector. The results are pretty easy to assess: the loss due to an APT campaign targeting dozens of global financial institutions totaled $1 bln. This plot marks the beginning of a new stage in the evolution of cybercriminal activity, where malicious users steal money directly from banks, and avoid targeting end users.