SentinelOne

🔥 🟣 Purple AI is here and now generally available! To learn more about the industry’s leading AI security analyst, watch the video below. 👉 Why Purple AI? Because it’s unlike anything available on the market: 💪 Early adopters report that Purple AI makes threat hunting and investigations 80% faster.  🧠 Translates natural language into sophisticated PowerQueries.  💨 Speed and visibility with lightning fast-queries with one console, one platform, and the industry’s most-performant data lake.  🔎 One-click threat hunting quickstarts, suggested next queries for deeper investigations, and intelligent summaries and shareable investigation notebooks. 👉 Ready to transform your security operations?  Get a demo: https://s1.ai/Purple-AI

💜 Melissa K. Smith knows 👉 Cybersecurity is a team sport; Partnerships with the right tools and right technologies play an essential role in our industry. 🤝 We’re proud of how our independent and collaborative partner ecosystem helps us collectively "find crime and solve evil." To learn more, watch the video below—and come find us (and Mel) at #AWSreInvent.  https://s1.ai/reInvent24

🤖 🧑💻#AWSreInvent, think you have what it takes to win Mortal vs. Machine? We do. In this unique Capture the Flag (CTF) competition, we’ll augment your threat-hunting abilities with our Purple AI security analyst. The best part: No previous experience necessary, we promise. ⛳ Visit Booth 1632 during the conference to experience the power of Purple AI—and see if you have what it takes to win. https://s1.ai/reInvent24

🥇In honor of Veterans Day, Remembrance Day and Armistice Day, we salute all who have bravely served in the line of duty. We are proud to spotlight members of our Sentinels Who Served Inclusion Network – Andy Burke, CIPP/US, Keith Fields, Marlowe Hillyer, and Tom Blankenhorn. These Sentinels have made enormous contributions to their country and our company. Ready to join an award-winning culture? At SentinelOne, you will drive innovation, build your future, and work with purpose! View our openings here: https://s1.ai/CareersPage

🗞️ Our weekly cybersecurity news roundup 👉 The Good: Canadian authorities arrest Moucka for stealing data from major organizations. The Bad: North Korea's BlueNoroff group targets crypto businesses with fake news lures. The Ugly: Fabrice PyPi package steals AWS credentials from developers. To learn more, read the full blog post: https://s1.ai/GBU6-Wk45

🌥️ 🤝 #AWSreInvent, there’s still time to book a meeting with a SentinelOne product expert. Directors and above may qualify to meet with Ric Smith, Alex Stamos, Ely Kahn, and Brian Lanigan. 🔗 Learn more: https://s1.ai/reInvent24

🇰🇵 🍎 A new SentinelLabs discovery has found a suspected North Korean threat actor targeting macs using a novel and “especially interesting” persistence mechanism, which abuses the Zshenv configuration file. Using email and PDF lures with fake news headlines or stories about crypto-related topics, the actor has been observed targeting Crypto-related businesses with the multi-stage malware. s1.ai/BNThief 🚨 One factor that is relatively consistent throughout many of these campaigns is that the threat actors are seemingly able to acquire or hijack valid Apple 'identified developer' accounts at will, have their malware notarized by Apple, and bypass macOS Gatekeeper and other built-in Apple security technologies. In light of this and the general increase in macOS crimeware observed across the security industry, we encourage all macOS users, but particularly those in organizational settings, to harden their security and increase their awareness of potential risks. 🚨 📄 To learn more about Hidden Risk and read of detail its operation and indicators of compromise, including the use of the novel persistence mechanism abusing the zshenv configuration file, read the full research by Raffaele Sabato, Phil Stokes and Tom Hegel: s1.ai/BNThief

🗞️"Just as autonomous vehicles and aircraft are making the road and air safer and more efficient, artificial intelligence (AI) can also dramatically change the way we manage security," writes SentinelOne's Albert Caballero. To learn more, read the full article: https://s1.ai/Techzineacyb

☁️ Cloud security practitioners, this blog series is for you! Kubernetes is the backbone of cloud-native environments, but its popularity makes it a prime target for attackers. Recent threats show how privilege escalation techniques are being used to compromise clusters, disrupt services, and access sensitive data. 👉 To dive deeper on how adversaries exploit Kubernetes vulnerabilities and misconfigurations—and what you can do to protect your environments—read the full blog (Part 1): https://s1.ai/K8s-priv