SentinelOne’s Post

🔥 🟣 Purple AI is here and now generally available! To learn more about the industry’s leading AI security analyst, watch the video below. 👉 Why Purple AI? Because it’s unlike anything available on the market: 💪 Early adopters report that Purple AI makes threat hunting and investigations 80% faster.  🧠 Translates natural language into sophisticated PowerQueries.  💨 Speed and visibility with lightning fast-queries with one console, one platform, and the industry’s most-performant data lake.  🔎 One-click threat hunting quickstarts, suggested next queries for deeper investigations, and intelligent summaries and shareable investigation notebooks. 👉 Ready to transform your security operations?  Get a demo: https://s1.ai/Purple-AI

🗞️ In CyberScoop: "Chinese-linked cyberespionage campaigns are increasingly deploying ransomware as the final stage in operations to either make money, distract their adversaries or make it more difficult to attribute their work, researchers with SentinelLabs and Recorded Future said Wednesday." "Historically, cyberespionage groups working on behalf of states have mostly eschewed the use of ransomware, but that appears to now be changing as state-backed hackers are increasingly using the epidemic of ransomware to hide their operations." To learn more, read the full article by AJ Vicens: https://s1.ai/CS-Chamel

🗞️ In The Washington Post: "'Cyberespionage operations disguised as ransomware activities provide an opportunity for adversarial countries to claim plausible deniability,' a team from security companies Recorded Future and SentinelOne wrote in a report released Wednesday. The companies suspect that Chinese espionage groups were behind what appeared to be 2022 ransomware attacks on the office of the Brazilian president and on the All India Institute of Medical Sciences." To learn more, read the full article by Joseph Menn: https://s1.ai/WaPo-Cham

🧠 SentinelOne's Chris Krebs recently joined top Fortune 500 CEOs to discuss how businesses are reinventing themselves around artificial intelligence (AI), clean energy, and other emerging technologies. “While this regulatory and enforcement challenge will not be solved overnight, the policy arc has been fairly consistent and bipartisan." Krebs also expressed optimism that “AI-enabled defenses are outstripping the capabilities of adversaries to attack our critical infrastructure, in large part thanks to capital markets, innovation, and the investments companies are putting into it.” To learn more, read the full article about the Yale CEO Summit: https://s1.ai/Yale-CEO

🚨 👿 A disturbing ransomware trend that blurs the lines between cyberespionage and cybercrime, highlighted in a new SentinelLabs report: Threat actors in the cyberespionage ecosystem are using ransomware as a final stage in their operations for the purposes of financial gain, disruption, distraction, misattribution, or removal of evidence. This report by Aleksandar Milenkoski and Recorded Future's Julian-Ferdinand Vögele introduces new findings about notable intrusions in the past three years, some of which were carried out by a Chinese cyberespionage actor but remain publicly unattributed. To learn more, read the full research report: https://s1.ai/Chamel-b

⚡ “Deep tech” means lightning in a bottle in venture-capital jargon: It signals a company’s business model relies on significant advances in science and technology. Adversaries and cybercriminals are catching on. To learn more, including the three emerging threats to the “deep tech” venture ecosystem, read this PinancleOne ExecBrief by Matthew Pines: https://s1.ai/P1-DpTech

📺 On PBS NewsHour: "This might not be critical infrastructure, but it sure does affect us. It affects someone that's trying to go out there and get a new vehicle, if their old vehicle broke down. So it's unfortunately part of a kind of a bigger mental attack on the United States and our people," says SentinelOne's Chris Krebs about the CDK cyberattack. "I think the unfortunate reality is that paying only benefits the attacker. It rewards them and that's why the United States is getting disproportionately affected by ransomware. Yes, you have cybersecurity incidents in Europe and the United Kingdom and elsewhere, but because we pay at a higher clip here in the U.S., the bad guys are coming here and they're hitting our businesses pretty hard." "I would suggest, though, that we think about this at a higher level, where this is not just some random cyber criminals. There is a geopolitical element to ransomware as well, where it fits into Russia and the Kremlin's bigger strategy to attack the West, to attack the United States, so that we're talking about this tonight on TV, so that we're experiencing this, we're being inconvenienced, we're scared of more and more cyberattacks. So, ultimately, this does, I believe, play into Putin's overall strategy." To learn more, watch the full interview: https://s1.ai/PBSNwsCDK

🗞 In case you missed it: Last week's cybersecurity news roundup 👉 U.S. Department of Justice indicts dark marketplace operators, China-linked cyber spies exploit zero days to target network security, and cyber attack disrupts American auto dealerships. To learn more, read the full blog post: https://s1.ai/GBU6-Wk25

🔥 Our Purple AI is one of the 10 hottest cybersecurity tools and products of 2024 (so far), according to CRN! "SentinelOne debuted a major new automated investigation capability on its Singularity Platform, powered by its Purple AI technology. Auto-Investigation is 'where Purple is conducting the investigation on your behalf,' Ric Smith, SentinelOne’s chief product and technology officer, told CRN. Today, Security Operations Center teams are 'hyper-burdened with alerts,' Smith said. 'We're trying to make it such that this [technology] can go through and deal with the investigation on behalf of the analyst. It’s basically burning down that backlog and burning down risk, which has never been done before.'" To learn more, read the full article by Kyle Alspach: https://s1.ai/CRN10-24