SentinelOne

📣🎙️ 'Just A Sec' LIVE from the expo floor at Black Hat 2025 🔥 🔥. If you missed it, don't worry we got you covered. Catch up here with this recording or on Spotify & YouTube: 🎧 Spotify - https://lnkd.in/gyD6TCcv 📺 YouTube - https://lnkd.in/gUVrkhGQ This months master topic: ''Big Tech's $100M Paychecks for AI Talent'' 💰 💰 Steve Stone, Drea London, JAG-S and Dakota Cary shared their insights on key points; 🎓 Implications for the Education system – if the best AI researchers are cooped up in expensive labs, who will teach the next generation? 🤔 Contextualizing insider risk – If your talent can pull $100m paychecks, you need to be more worried about workplace satisfaction and cohesion than insiders taking your stuff 🇺🇸 US companies should be able to poach any and all of China’s best AI researchers. Why aren’t we? We then put the team on the countdown clock with the following hot topics; 😬 Sharepoint Shambles 🎩 Black Hat Best 🇨🇳 Hafnium Strikes 💔 Love after Lockup ☁️ Salesforce Compromises 👮 The Com Arrests 🎒 Favourite Backpack? 🇷🇺 Russia uses ISP for bad

💜 Purple vibes only on Day 1 of Black Hat 2025 💜 Stop by Booth #3033 to experience the future of AI security today: ✅ Explore our latest platform enhancements, including GenAI an agentic AI 🤝 Connect 1:1 with SentinelOne experts on Endpoint, Cloud, AI SIEM, Hunting and Incident Response 🎯 Test your skills in Mortal vs. Machine hunting challenge Learn more, visit us at booth #3033 👈

💙 💜 AI-Native cybersecurity powers Human-Centric Risk Management. We’re excited to deepen our partnership with Mimecast 🙌. Joint customers benefit from out-of-the-box AI detections, powered by the Singularity Platform, for deeper visibility into human risk. By ingesting events into AI SIEM, and in reverse malware-related events from SentinelOne’s Singularity® Platform into the Mimecast platform, customers can benefit from; ✅ Threat correlation with individual user behavior ✅ Flag high-risk employees/accounts ✅ Execute targeted interventions from behavioral nudges to adaptive policies ✅ Impact change in user education This provides CISOs and security leaders not only with a unified view of human risk across both email and endpoint environments, but also a way to manage it effectively. 📖 Learn more here - https://lnkd.in/gy6NjYBk

🚨Black Hat 2025 is underway and we are hosting 'Just A Sec' LIVE from the show floor. Wednesday August 6th at the SentinelOne booth, #3033, at 11am. Do. Not. Miss. This.. 👀 This months master topic: ''Big Tech's $100M Paychecks for AI Talent'' 💰 💰 Steve Stone,  Drea London, JAGs and Dakota Cary will be breaking down the key points; 🎓 Implications for the Education system – if the best AI researchers are cooped up in expensive labs, who will teach the next generation? 🤔  Contextualizing insider risk – If your talent can pull $100m paychecks, you need to be more worried about workplace satisfaction and cohesion than insiders taking your stuff 🇺🇸 US companies should be able to poach any and all of China’s best AI researchers. Why aren’t we? We then put the team on the countdown clock with the following hot topics; 😬 Sharepoint Shambles 🎩 Black Hat Best 🇨🇳 Hafnium Strikes 💔 Love after Lockup ☁️ Salesforce Compromises 👮 The Com Arrests 🎒 Favourite Backpack? 🇷🇺 Russia uses ISP for bad

4,000+ victims across 62 countries. Over 200,000 passwords, 4M+ cookies, and hundreds of credit cards exfiltrated. SentinelLabs and Beazley Security have discovered and analysed a rapidly evolving series of infostealer campaigns delivering the Python-based PXA Stealer. Why it matters: This isn’t just another stealer. It's a fully operational underground economy built on Telegram bots and a leap in both tradecraft and evasion strategies. The threat actors behind these campaigns are linked to Vietnamese-speaking cybercriminal circles who monetize the stolen data through an underground ecosystem that automates resale and reuse through the Telegram API. The details: 🔹 4,000+ victims across 62 countries, most notably South Korea, the U.S., the Netherlands, Hungary, and Austria. 🔹 Over 200,000 passwords, 4M+ cookies, and hundreds of credit cards exfiltrated 🔹 Malware loaded through signed software like Haihaisoft PDF Reader and MS Word 2013 🔹 Telegram bots used to manage exfil, automate resale, and notify criminals of new stolen data 🔹 Infrastructure abuse includes Dropbox, Cloudflare Workers, and 0x0[.]st, a Pastebin-like service The big picture: Modern stealer campaigns are evolving beyond malware. Automation, obfuscation, and legitimate infrastructure are the new weapons of choice. 🧠 Read the full report to see how these threat actors, linked to Vietnamese-speaking cybercriminal circles, are industrializing infostealing:https://s1.ai/GhostZip

These Ethereum smart contracts don’t trade for you—they drain your crypto wallet. In new research from SentinelLABS, we reveal how threat actors are pushing malicious Ethereum smart contracts disguised as “MEV” trading bots via aged YouTube accounts and AI-generated influencers. 🧠 Why it matters: Video lured victims into sending over $900,000 in ETH (valued at time of publication). 📹 The playbook: - Aged YouTube accounts plus playlist laundering - Obfuscated attacker wallets via XOR and type coercion - Weaponized code hosted on Pastebin, TinyURL, Codeshare - Comments scrubbed, urgency engineered, trust faked 💡 Zoom out: This elaborate crypto scam is low-cost, high-yield, AI-powered operation that can scale across platforms, markets, and chains. 📖 Full report by Alex D.: https://s1.ai/eth-con

🤝Two AI Pioneers. One Vision for the Future of AI Security. SentinelOne to acquire Prompt Security to secure the rapidly growing use of GenAI and agentic AI in the enterprise 🚀 🔐Embrace AI tools like Gemini, Claude, and ChatGPT with confidence. Our AI-native endpoint, cloud, and SecOps strength combined with Prompt Security’s groundbreaking capabilities, will make it possible for every company to fully embrace AI without compromising safety and security. This is the foundation required for secure AI adoption at scale ⬅️ With Prompt Security’s capabilities, SentinelOne will give customers: ▶️ Real-time AI visibility into how AI is used across the enterprise ▶️ Policy-based controls to enforce safe use and prevent data leakage ▶️ AI attack prevention against threats like prompt injection, malicious output manipulation, and model abuse ▶️ Model-agnostic coverage across all major LLM providers including OpenAI, Anthropic, and Google, as well as self-hosted or on-prem models ▶️ MCP gateway security between AI applications and more than 13,000 known MCP servers, intercepting every call, prompt template, and response 🆙 We are raising the bar, again. Learn more about this next phase of innovation in our blog and press release 💜 Blog - https://bit.ly/4fkPyOO Press Release - https://bit.ly/3HlI5m7

🚨 FBI, CISA, China’s Hafnium, and Russian hackers all in one place. This Week in Cyber: The Good, the Bad, and the Ugly 🚨 ✅ GOOD • The FBI has seized $1.7M in Bitcoin from an affiliate of Chaos ransomware, striking a blow to the new gang attacking and extorting payments from Texan companies • CISA has open-sourced its Thorium malware analysis platform, giving defenders across the government, public, and private sectors a powerful new tool for digital forensics and automating analysis workflows ⚠️ BAD • China’s covert cyber capabilities are on full display in our latest SentinelLABS report. Hafnium (aka Silk Typhoon) is back with fresh patents and sharper teeth ➡️ https://s1.ai/SilkPatents 🤢 UGLY • Microsoft is warning that a cyberespionage group linked to Russia’s FSB gained access to ISPs to launch AitM attacks on embassies and diplomatic missions in Moscow • This is a sophisticated campaign exploiting network-level access to intercept and manipulate traffic 🧠 What to do now: Explore Thorium’s capabilities for internal forensic readiness Review Hafnium-linked infrastructure and IOCs 📖 Full breakdown from SentinelOne: https://s1.ai/GBU7-Wk31

Innovation Recognized: The future of cybersecurity is built on AI—not bolted on. CRN has named SentinelOne CEO Tomer Weingarten one of 2025’s Most Influential Executives for leading the charge toward autonomous, AI-native defense. From AI SIEM to agentic operations, SentinelOne isn’t adding AI to legacy systems—we’re building the next generation of cybersecurity, natively AI.

📊 Tool sprawl, bloated investments, and poor signal-to-noise-ratio: Cloud security doesn’t have to be chaotic and complex. In our latest cloud security report, learn how over 400 CXO's are approaching cloud investments and strategies 💡 Our new 2025 Cloud Security Survey, conducted with CyberEdge, reveals how today’s cloud defenses are faltering under too many tools, too much noise, and not enough visibility. By the numbers: ▶️ 92% of orgs are struggling with tool sprawl ▶️ 46.5% prioritize real evidence over theory ▶️ 30% of alerts are not triaged within 24 hours Why it matters: Alert fatigue, siloed tooling, and poor signal-to-noise ratios are blocking defenders from acting fast — and creating opportunities for attackers to slip through. 🧰 The fix: Security teams are turning to AI and unified platforms to simplify operations, accelerate detection, and take action before damage is done. 📥 Download the full report: https://lnkd.in/gav4zM4m