Blog

The Good | Global Authorities Disrupt Major Botnet, Ransomware Actor & Dark Web Marketplace In a wave of cybersecurity wins, recent actions by international law enforcement have disrupted several long-running cybercrime operations, arrested key suspects, and dismantled major infrastructure used in global attacks. U.S. and international authorities have dismantled a botnet active since 2004 responsible …

The Good, the Bad and the Ugly in Cybersecurity – Week 20 Read More »

Foreword & Guest Bio As part of this ongoing series, SentinelOne is excited to present a series of guest blogs from cloud security experts covering their views on cloud security best practices. Following on from blogs from Teri Radichel who focused on what AWS security gotchas to avoid and how to address the risk of …

Prioritizing CVEs in the Cloud Read More »

In today’s AI-powered enterprise, data has become both the crown jewel and the weakest link. At SentinelOne, we’ve long believed in defending the modern enterprise with autonomous, AI-driven solutions that secure every edge of the attack surface. Now, as data emerges as the new perimeter, we see a frontier that demands not just protection, but …

Reimagining Data Security: Why SentinelOne is Investing in Theom.ai Read More »

May 12 is recognized globally as Anti-Ransomware Day, an initiative created to raise awareness about the threat of ransomware and to promote better practices for prevention, response, and recovery. The date was chosen to mark the anniversary of the WannaCry outbreak in 2017, one of the most disruptive ransomware incidents in history, affecting systems in …

Anti-Ransomware Day 2025: 10 Years of RaaS and the Making of a Billion-Dollar Business Read More »

At SentinelOne, we recognize that motherhood brings a wealth of skills that are invaluable in the workplace. From unparalleled multitasking abilities to innovative problem-solving and empathetic leadership, mothers contribute significantly to our company’s success. However, studies from around the world reveal that mothers often shoulder a disproportionate share of the household’s mental load, managing tasks …

Mothers of SentinelOne Balance Cybersecurity & Parenthood Read More »

The Good | Joint Crackdown Disrupts Major DDoS-for-Hire Network & Arrests Four Polish authorities have arrested four cybercriminals accused of working through DDoS-for-hire platforms to launch thousands of attacks worldwide. The six platforms in total, Cfxapi, Cfxsecurity, neostress, jetstress, quickdown, and zapcut, have all been dismantled as a result of coordinated efforts involving law enforcement …

The Good, the Bad and the Ugly in Cybersecurity – Week 19 Read More »

In recent months, two high-profile incidents—one in the private sector and one within the U.S. government—have challenged long-standing assumptions about trust, access, and oversight. The Rippling-Deel espionage case and the U.S. government’s “Signalgate” leak highlight how encrypted tools, remote work, and economic stressors have resurfaced longstanding vulnerabilities to insider activity. These incidents did not rely …

Insider Risk Revisited: Espionage, Encryption & Economics Read More »

A research team at SentinelOne’s partner, Aon (Stroz Friedberg) published research this week that discussed a local bypass technique that had the potential to impact SentinelOne’s Windows agent. These researchers first contacted SentinelOne in mid-January 2025 to share the issue. Upon being contacted by Stroz’s researchers, we immediately issued an update that prevents such techniques …

Protection Against Local Upgrade Technique Described in Aon Research Read More »

In recent weeks, the DragonForce ransomware group has been targeting UK retailers in a series of coordinated attacks causing major service disruptions. Prominent retailers such as Harrods, Marks and Spencer, and the Co-Op have all reported ongoing incidents affecting payment systems, inventory, payroll and other critical business functions. DragonForce has previously been attributed for a …

DragonForce Ransomware Gang | From Hacktivists to High Street Extortionists Read More »

The Good | FBI Shares 42,000 Phishing Domains After LabHost PhaaS Platform Takedown Since dismantling one of the world’s largest phishing-as-a-service (PhaaS) platforms, the FBI has shared 42,000 domains tied to it, helping cyber defenders identify IoCs and enhance their detection capabilities. Source: BleepingComputer LabHost operated from November 2021 until April 2024 and offered phishing …

The Good, the Bad and the Ugly in Cybersecurity – Week 18 Read More »