Security News

Threat researchers have found a rapidly updated malicious Python package on PyPI masquerading as a legitimate software-development kit from cybersecurity firm SentinelOne, but actually contains malware designed to exfiltrate data from infected systems. The package, which carried the name SentinelOne and has since been taken down, was uploaded to the Python Package Index - an online index of packages for Python developers - on December 11 and over two days was updated 20 times.

Cybersecurity researchers have discovered a new malicious package on the Python Package Index repository that impersonates a software development kit for SentinelOne, a major cybersecurity company, as part of a campaign dubbed SentinelSneak. "The SentinelOne imposter package is just the latest threat to leverage the PyPI repository and underscores the growing threat to software supply chains, as malicious actors use strategies like 'typosquatting' to exploit developer confusion and push malicious code into development pipelines and legitimate applications," ReversingLabs threat researcher Karlo Zanki said in a report shared with The Hacker News.

Threat actors have published a malicious Python package on PyPI, named 'SentinelOne,' that pretends to be the legitimate SDK client for the trusted American cybersecurity firm but, in reality, steals data from developers. The attack was discovered by ReversingLabs, which confirmed the malicious functionality and reported the package to SentinelOne and PyPi, leading to the removal of the package.

SentinelOne and Palo Alto are two of the top brands in this space, and this comparison will help you decide if either one of the company's tools is right for you. SentinelOne vs. Palo Alto: Feature comparison FeatureSentinelOnePalo Alto Artificial intelligence-based threat detectionYesYes One-click remediation and rollbackYesNo USB protectionYesYes Managed threat-hunting serviceYesYes Scope-based access controlNoYes Head-to-head comparison: SentinelOne vs. Palo Alto Automation.

SentinelOne and Carbon Black combine aspects of both endpoint management software and antivirus tools to detect, analyze and purge malicious activity from endpoint devices. SentinelOne vs. Carbon Black: Feature comparison FeatureSentinelOneCarbon Black MITRE Engenuity EvaluationHigh number of detectionsMissed detections Threat huntingYesYes Single agentYesNo Feature parity across OSYesNo Cloud dependentNoYes Head-to-head comparison: SentinelOne vs. Carbon Black Threat hunting.

SentinelOne vs CrowdStrike: Compare EDR software We may be compensated by vendors who appear on this page through methods such as affiliate links or sponsored partnerships. While SentinelOne and CrowdStrike are similar offerings, there are critical differences in terms of environment, audience size, scalability and audience.

SentinelOne reached a $616.5m deal to buy identity security vendor Attivo Networks, the companies announced today. According to the endpoint security firm, acquiring Attivo will bring identity threat detection and response to its extended detection and response tech and expand its total addressable market by about $4bn. "The shift to hybrid work and increased cloud adoption has established identity as the new perimeter," SentinelOne COO Nicholas Warner said in a statement.

SentinelOne Storyline Active Response is a cloud-based automated hunting, detection, and response engine. Integrated with SentinelOne's ActiveEDR, STAR empowers security teams to create custom detection and response rules and deploy them in real time to the entire network or desired subset, to proactively detect and respond to threats.

SentinelOne on Monday updated the terms of its initial public offering, and the endpoint security company is now hoping to raise over $1 billion. SentinelOne filed for an IPO in early June and in an amendment made to its S-1 registration statement on June 21 the company revealed that it's offering 32 million shares of its Class A common stock.

SentinelOne announced that Christopher Krebs has joined the company's Advisory Board as the inaugural member. Krebs, who most recently served as the Director of the Department of Homeland Security's Cybersecurity and Infrastructure Security Agency, joins SentinelOne in its efforts to protect federal, national, and enterprise organizations against ransomware and the evolving threat landscape.