Category Archives: SentinelOne

Another round of ‘wiper’ malware appears in Ukrainian networks

Posted on by

Security researchers detected new destructive malware spreading in Ukraine on Wednesday, following evidence of distributed denial-of-service disruptions for government agencies — both of which overlapped with the beginnings of a Russian invasion. ESET said the data-wiping malware was “installed on hundreds of machines in the country,” and there were signs that the attackers had been preparing for almost two months. Silas Cutler, principle reverse engineer and resident hacker at Stairwell, said that the wiper damages a system’s master boot record, which tells a machine how to start up. That’s similar to malware known as WhisperGate that was used in an attack in January in Ukraine. Symantec, too, observed the wiper in action, and confirmed to CyberScoop that it has seen it in Latvia as well. Juan-Andres Guerrero-Saade, principal threat researcher at SentinelOne, said the wiper appeared to be more dangerous than the malware uncovered in January. None of the researchers […]

The post Another round of ‘wiper’ malware appears in Ukrainian networks appeared first on CyberScoop.

Continue reading Another round of ‘wiper’ malware appears in Ukrainian networks

KPMG accelerates investigations into cyberattacks with SentinelOne’s XDR platform

Posted on by

SentinelOne announced that KPMG LLP’s (KPMG) Cyber Response Services team will use SentinelOne’s Singularity XDR platform to accelerate investigations and response to cyberattacks. KPMG is also leveraging SentinelOne for compromise assessments across i… Continue reading KPMG accelerates investigations into cyberattacks with SentinelOne’s XDR platform

Belarusian hacktivist group attacks Belarusian Railways as military frictions mount

Posted on by

A group of Belarusian hackers claim to have encrypted the servers, databases and workstations of Belarusian Railways with the aim of slowing down Russian troop movements as tensions continue to mount toward a potential Russian invasion of Ukraine. The Belarus Cyber Partisans — a group of pro-democracy hacktivists who have been targeting the Russia-friendly Belarusian government with a series of hack-and-leak operations aimed to expose government corruption — tweeted mid-morning Monday U.S. time that they’d “encrypted some of BR’s servers, databases and workstations to disrupt operations.” They demanded the release of 50 political prisoners they say are the most in need of medical attention want Russian troops to stay out of their country. Franak Viacorka, an adviser to a Belarusian human rights advocate, tweeted screenshots purporting to show access to the railway company’s servers. Additional screenshots of the data were posted by the Cyber Partisans’ Telegram account. We have encryption […]

The post Belarusian hacktivist group attacks Belarusian Railways as military frictions mount appeared first on CyberScoop.

Continue reading Belarusian hacktivist group attacks Belarusian Railways as military frictions mount

SentinelOne integrates with ServiceNow to accelerate incident response for security and IT teams

Posted on by

SentinelOne, an autonomous cybersecurity platform company, announced the SentinelOne App for ServiceNow Security Incident Response (SIR). The integration unites security and IT teams for more effective incident response. With SentinelOne integrated dir… Continue reading SentinelOne integrates with ServiceNow to accelerate incident response for security and IT teams

Infosec products of the month: December 2021

Posted on by

Here’s a look at the most interesting products from the past month, featuring releases from Action1, AwareGO, BlackBerry, Box, Castellan Solutions, Cloudflare, Code42, Cossack Labs, F5 Networks, Immuta, IriusRisk, MetricStream, MobileSphere, Nerdio, Ne… Continue reading Infosec products of the month: December 2021

Vulnerabilities in Eltima SDK affect popular cloud desktop and USB sharing services

Posted on by

SentinelOne researchers have unearthed a number of privilege escalation vulnerabilities in Eltima SDK, a library used by many cloud desktop and USB sharing services like Amazon Workspaces, NoMachine and Accops to allow users to connect and share local … Continue reading Vulnerabilities in Eltima SDK affect popular cloud desktop and USB sharing services

New infosec products of the week: December 10, 2021

Posted on by

Here’s a look at the most interesting products from the past week, featuring releases from Action1, Cloudflare, Code42, F5 Networks, NetQuest, Oxeye, SentinelOne and Tenable. SentinelOne Singularity Mobile combats mobile malware and phishing attacks Wi… Continue reading New infosec products of the week: December 10, 2021

Torq raises $50M to reinvent security automation for digital enterprises

Posted on by

Torq announced that it has raised a $50M Series B round, led by New York-based global private equity and venture capital firm Insight Partners, with participation from SentinelOne. Existing investors GGV Capital and Bessemer Venture Partners also parti… Continue reading Torq raises $50M to reinvent security automation for digital enterprises

SentinelOne Singularity Mobile combats mobile malware and phishing attacks

Posted on by

SentinelOne announced Singularity Mobile, a new AI-powered mobile security solution delivering autonomous threat protection, detection, and response for iOS, Android, and Chrome OS devices. With on-device behavioral AI detecting and protecting against … Continue reading SentinelOne Singularity Mobile combats mobile malware and phishing attacks

Alkira partners with Exclusive Networks to expand its cloud market share

Posted on by

Alkira has appointed Exclusive Networks, a global trusted cybersecurity specialist for digital infrastructure, as a distributor for its cloud networking as-a-service platform (CNaaS). The deal makes Alkira’s CNaaS platform Cloud Services Exchange (CSX)… Continue reading Alkira partners with Exclusive Networks to expand its cloud market share