SentinelOne Blog

A stealthy MaaS infostealer exfiltrating browser, crypto, and system data, Katz Stealer is enabling full campaign control for threat actors.

Global authorities disrupt nation-state actors, ZuRu malware backdoors macOS, and DoNot Team spies on European targets via LoptikMod RAT.

The post The Good, the Bad and the Ugly in Cybersecurity – Week 28 appeared first on SentinelOne.

ZuRu malware continues to prey on macOS users seeking legitimate business tools, adapting its loader and C2 techniques to backdoor its targets.

The post macOS.ZuRu Resurfaces | Modified Khepri C2 Hides Inside Doctored Termius App appeared first on SentinelOne.

Law enforcement disrupts cybercrime networks, US agencies warn of Iranian cyber threats, and DPRK actors target Web3 with Nim-based malware.

The post The Good, the Bad and the Ugly in Cybersecurity – Week 27 appeared first on SentinelOne.

DoJ charges IntelBroker cyberattacker, APT28 abuses Signal to target Ukraine, and Salt Typhoon exploits unpatched telecoms in Canada.

The post The Good, the Bad and the Ugly in Cybersecurity – Week 26 appeared first on SentinelOne.

Pentagon modernize defense via AI, Water Curse spreads malware through GitHub repos, and TaxOff uses Chrome zero-day to deploy backdoor.

The post The Good, the Bad and the Ugly in Cybersecurity – Week 25 appeared first on SentinelOne.

Explore how SentinelOne’s partnership with AWS is transforming cloud security through integrations and Security Hub enhancements.

The post Inside the SentinelOne + AWS Partnership: Smarter Cloud Security at re:Inforce 2025 appeared first on SentinelOne.

Happy Father's Day! We speak to Sentinel Dads around the globe, learning about their families and what fatherhood means in today's world.

The post Redefining Fatherhood: How SentinelOne Dads Are Leading At Work & At Home appeared first on SentinelOne.

Interpol disrupts major infostealer operation, Fog ransomware abuses pentesting tools, and zero-click AI flaw in MS 365 Copilot exposes data.

The post The Good, the Bad and the Ugly in Cybersecurity – Week 24 appeared first on SentinelOne.

Police seize major dark market, APT targets Kurdish and Iraqi government officials, and actors abuse AI to compromise software supply chains.

The post The Good, the Bad and the Ugly in Cybersecurity – Week 23 appeared first on SentinelOne.

S Ventures invests in the next era of computing through our partnership with Infleqtion, a pioneering leader securing against quantum threats.

The post Securing the Quantum Frontier: S Ventures’ Investment in Infleqtion appeared first on SentinelOne.

Robbinhood operator pleads guilty, PumaBot hits IoT via SSH brute-force attacks, and DragonForce expands RMM exploits via an affiliate model.

The post The Good, the Bad and the Ugly in Cybersecurity – Week 22 appeared first on SentinelOne.

UPDATE 3 (20:47 UTC, May 31, 2025): A Root Cause Analysis into the May 29, service disruption has been complet […]

The post Official Root Cause Analysis (RCA) for SentinelOne Global Service Interruption – May 29, 2025 appeared first on SentinelOne.

Law enforcement seizes Lumma infrastructure, threat actor exploits cloud subdomains to spread malware, and Russia's GRU targets Ukraine aid efforts.

The post The Good, the Bad and the Ugly in Cybersecurity – Week 21 appeared first on SentinelOne.

Learn about the latest ClickFix tactics compromising websites and embedding fraudulent CAPTCHA images to deliver malware and malicious code.

The post Caught in the CAPTCHA: How ClickFix is Weaponizing Verification Fatigue to Deliver RATs & Infostealers appeared first on SentinelOne.

Police disrupt cybercrime ops, malicious NPM package hides malware via Unicode, and spies leverage zero-day in enterprise messaging app.

The post The Good, the Bad and the Ugly in Cybersecurity – Week 20 appeared first on SentinelOne.

Exploited CVEs are a leading cause of cloud breaches. Learn how to effectively mitigate them through context-aware risk prioritization.

The post Prioritizing CVEs in the Cloud appeared first on SentinelOne.

S Ventures invests in Theom.ai, a company redefining data security and governance with their AI-native Data Operations Center (DOC) platform.

The post Reimagining Data Security: Why SentinelOne is Investing in Theom.ai appeared first on SentinelOne.

SentinelOne protects users from local upgrade bypass techniques by implementing controls like the Local Upgrade Authorization feature.

The post Protection Against Local Upgrade Technique Described in Aon Research appeared first on SentinelOne.

DragonForce ransomware group is targeting major UK retailers. Learn about this evolving threat and what steps can be taken to mitigate risk.

The post DragonForce Ransomware Gang | From Hacktivists to High Street Extortionists appeared first on SentinelOne.