SentinelOne Blog

U.S. makes major arrests and sanctions, GhostAction steals 1000s of GitHub secrets, China-linked hackers target political communications.

SentinelOne reaffirms support for MITRE ATT&CK, skipping this year’s evals to prioritize customer-focused innovation.

SentinelOne announces its intent to acquire Observo AI, the category-defining data platform for AI-native telemetry pipeline management.

U.S. offers $10M for Russian FSB officers, npm malware hides in Ethereum smart contracts, and DPRK threat actors abuse threat intel tools.

Interpol arrests 1200 cybercrime suspects, UpCrypter spreads via fake voicemails to drop RATs, and Salt Typhoon exploits routers for global espionage.

A new report from PinnacleOne reveals the rise of cyber risks in UK construction and offers guidance for CISOs in this critical industry.

Courts jail hackers and PyPI boosts defenses, Noodlophile evolves with Telegram staging, and DPRK actors abuse GitHub in diplomat attacks.

Learn how Modern EDR leverages AI, automation, and proactive defense to outpace threats and empower efficient endpoint security.

DoJ busts $100M fraud ring, Curly COMrades hit Georgia and Moldova with MucorAgent, and a new MadeYouReset DoS flaw emerges.

U.S. seizes millions in illicit assets, YouTube crypto scams drain $900K in BTC, and SonicWall investigates a 0-day enabling Akira ransomware.

SentinelOne's AI-powered FORGE evolves detection rules to stop modern cyber threats with speed, precision, and minimal false positives.

SentinelOne acquires Prompt Security to deliver real-time AI visibility, control, and protection across enterprises. Learn more in this blog.

FBI seizes ransomware Bitcoin, SentinelLABS exposes Hafnium’s spying tools, Secret Blizzard hijacks Moscow ISPs for embassy surveillance.

SentinelOne has, once again, been named an MDR leader for AI-driven detection, response, and expert analyst collaboration at global scale.

Is your AI in security real or just noise? Learn how to cut hype, boost speed, and prove value with measurable SOC outcomes.

Authorities release a free ransomware decryptor, Lumma infostealer regroups post-takedown, and ToolShell zero-day spurs urgent patching.

Read up on how to defend against ToolShell, the latest SharePoint critical vulnerability affecting on-premises SharePoint servers.

SentinelOne explores how AI is both a growing cloud attack surface and a powerful defense tool. Learn more in part two of this blog series.

SentinelOne shares distinct attack clusters and a detailed timeline of events on an active exploit of the ToolShell 0-day in MS SharePoint.

Police disrupt ransomware and DDoS attackers, Katz Stealer expands multi-stage infection campaign, and DPRK-actors spread npm malware.