SentinelOne Blog

SentinelOne explores how AI is both a growing cloud attack surface and a powerful defense tool. Learn more in part two of this blog series.

SentinelOne shares distinct attack clusters and a detailed timeline of events on an active exploit of the ToolShell 0-day in MS SharePoint.

Police disrupt ransomware and DDoS attackers, Katz Stealer expands multi-stage infection campaign, and DPRK-actors spread npm malware.

Learn how misconfigurations and credential theft remain top cloud threats in 2025, as AI expands attacker tools and defender capabilities.

Explore Gartner's ® Magic Quadrant™ 2025 for Endpoint Protection Platforms. Learn why SentinelOne was named a Leader for the 5th year in a row.

A stealthy MaaS infostealer exfiltrating browser, crypto, and system data, Katz Stealer is enabling full campaign control for threat actors.

Global authorities disrupt nation-state actors, ZuRu malware backdoors macOS, and DoNot Team spies on European targets via LoptikMod RAT.

The post The Good, the Bad and the Ugly in Cybersecurity – Week 28 appeared first on SentinelOne.

ZuRu malware continues to prey on macOS users seeking legitimate business tools, adapting its loader and C2 techniques to backdoor its targets.

The post macOS.ZuRu Resurfaces | Modified Khepri C2 Hides Inside Doctored Termius App appeared first on SentinelOne.

Law enforcement disrupts cybercrime networks, US agencies warn of Iranian cyber threats, and DPRK actors target Web3 with Nim-based malware.

The post The Good, the Bad and the Ugly in Cybersecurity – Week 27 appeared first on SentinelOne.

DoJ charges IntelBroker cyberattacker, APT28 abuses Signal to target Ukraine, and Salt Typhoon exploits unpatched telecoms in Canada.

The post The Good, the Bad and the Ugly in Cybersecurity – Week 26 appeared first on SentinelOne.

Pentagon modernize defense via AI, Water Curse spreads malware through GitHub repos, and TaxOff uses Chrome zero-day to deploy backdoor.

The post The Good, the Bad and the Ugly in Cybersecurity – Week 25 appeared first on SentinelOne.

Explore how SentinelOne’s partnership with AWS is transforming cloud security through integrations and Security Hub enhancements.

The post Inside the SentinelOne + AWS Partnership: Smarter Cloud Security at re:Inforce 2025 appeared first on SentinelOne.

Happy Father's Day! We speak to Sentinel Dads around the globe, learning about their families and what fatherhood means in today's world.

The post Redefining Fatherhood: How SentinelOne Dads Are Leading At Work & At Home appeared first on SentinelOne.

Interpol disrupts major infostealer operation, Fog ransomware abuses pentesting tools, and zero-click AI flaw in MS 365 Copilot exposes data.

The post The Good, the Bad and the Ugly in Cybersecurity – Week 24 appeared first on SentinelOne.

Police seize major dark market, APT targets Kurdish and Iraqi government officials, and actors abuse AI to compromise software supply chains.

The post The Good, the Bad and the Ugly in Cybersecurity – Week 23 appeared first on SentinelOne.

S Ventures invests in the next era of computing through our partnership with Infleqtion, a pioneering leader securing against quantum threats.

The post Securing the Quantum Frontier: S Ventures’ Investment in Infleqtion appeared first on SentinelOne.

Robbinhood operator pleads guilty, PumaBot hits IoT via SSH brute-force attacks, and DragonForce expands RMM exploits via an affiliate model.

The post The Good, the Bad and the Ugly in Cybersecurity – Week 22 appeared first on SentinelOne.

UPDATE 3 (20:47 UTC, May 31, 2025): A Root Cause Analysis into the May 29, service disruption has been complet […]

The post Official Root Cause Analysis (RCA) for SentinelOne Global Service Interruption – May 29, 2025 appeared first on SentinelOne.

Law enforcement seizes Lumma infrastructure, threat actor exploits cloud subdomains to spread malware, and Russia's GRU targets Ukraine aid efforts.

The post The Good, the Bad and the Ugly in Cybersecurity – Week 21 appeared first on SentinelOne.

Learn about the latest ClickFix tactics compromising websites and embedding fraudulent CAPTCHA images to deliver malware and malicious code.

The post Caught in the CAPTCHA: How ClickFix is Weaponizing Verification Fatigue to Deliver RATs & Infostealers appeared first on SentinelOne.