Pyrzout :vm:<p>Microsoft pins on-prem SharePoint attacks on Chinese threat actors <a href="https://www.helpnetsecurity.com/2025/07/22/microsoft-pins-sharepoint-attacks-cve-2025-53770/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">helpnetsecurity.com/2025/07/22</span><span class="invisible">/microsoft-pins-sharepoint-attacks-cve-2025-53770/</span></a> <a href="https://social.skynetcloud.site/tags/PaloAltoNetworks" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PaloAltoNetworks</span></a> <a href="https://social.skynetcloud.site/tags/vulnerability" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>vulnerability</span></a> <a href="https://social.skynetcloud.site/tags/EyeSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EyeSecurity</span></a> <a href="https://social.skynetcloud.site/tags/SentinelOne" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SentinelOne</span></a> <a href="https://social.skynetcloud.site/tags/CheckPoint" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CheckPoint</span></a> <a href="https://social.skynetcloud.site/tags/SharePoint" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SharePoint</span></a> <a href="https://social.skynetcloud.site/tags/TrendMicro" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TrendMicro</span></a> <a href="https://social.skynetcloud.site/tags/Don" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Don</span></a>'tmiss <a href="https://social.skynetcloud.site/tags/Hotstuff" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Hotstuff</span></a> <a href="https://social.skynetcloud.site/tags/exploit" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>exploit</span></a> <a href="https://social.skynetcloud.site/tags/Rapid7" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Rapid7</span></a> <a href="https://social.skynetcloud.site/tags/China" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>China</span></a> <a href="https://social.skynetcloud.site/tags/News" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>News</span></a></p>
Administered by:
#sentinelone
1 post1 participant1 post today
Come l’Agentic e la GenAI stanno rivoluzionando le security operations: La rapida adozione dell’AI Generativa (GenAI) e l’emergere dell’AI Agentic offrono nuove opzioni ai team, che possono intervenire per anticipare gli attacchi. Nei...
#SentinelOne #PaoloCecchi #cybersecurity #AIAgentic http://dlvr.it/TLwGky
Continued thread
Which mind you had he contacted #SentinelOne sooner he would have found out that the version of the helper and agent were faulty and could’ve given us the previous version to replace it, but nah, just lots of rude commentary in the moment about how it was unacceptable for a dev with no k8s experience to not understand how k8s works and stores and accesses files in a cluster without being allowed to see the full alert output to be able to see what pods were affected.
Continued thread
Mind you my team’s infosec liaison is still the guy who yelled at me over Teams and made me log on for a “sev1” while on bereavement leave after my father’s death because his team installed a faulty #SentinelOne helper in our cluster and demanded I investigate thousands of false alerts being thrown over pods using standard built-in Linux commands/programs on long/arbitrary file paths generated by k8s.
SentinelOne accelera il processo di migrazione sicura al cloud per i clienti di AWS: SentinelOne ha aderito all’Amazon Web Services (AWS) Independent Software Vendor (ISV) Workload Migration Program, un programma che supporta i partner dell’AWS Partner...
#SentinelOne #WorkloadMigrationProgram #RicSmith #cybersecurity #AI http://dlvr.it/TLgjrD
#SentinelOne shares new details on #China-linked breach attempt
Chinese spy crew appears to be preparing for conflict by backdooring 75+ critical orgs
#SentinelOne discovered the campaign when they tried to hit the #security vendor's own servers
In their report, they describe a series of intrusions between July 2024 and March 2025 involving #ShadowPad #malware and post-exploitation espionage activity that SentinelOne has dubbed "#PurpleHaze", publicly reported as #APT15 and #UNC5174, And they're blaming #China.
https://www.theregister.com/2025/06/09/china_malware_flip_switch_sentinelone/
The Register · Chinese spy crew appears to be preparing for conflict by backdooring 75+ critical orgs
Chinese-Linked Hackers Targeted 70+ Global Organizations, SentinelLABS – Source:hackread.com https://ciso2ciso.com/chinese-linked-hackers-targeted-70-global-organizations-sentinellabs-sourcehackread-com/ #1CyberSecurityNewsPost #CyberSecurityNews #CyberAttacks #SentinelLABS #SentinelOne #PurpleHaze #Hackread #security #UNC5174 #APT15 #China
CISO2CISO.COM & CYBER SECURITY GROUP · Chinese-Linked Hackers Targeted 70+ Global Organizations, SentinelLABS – Source:hackread.comSource: hackread.com - Author: Deeba Ahmed. SentinelLABS uncovers widespread China-linked cyber espionage targeting over 70 global organizations and cy
Chinese-Linked Hackers Targeted 70+ Global Organizations, SentinelLABS https://hackread.com/chinese-linked-hackers-targeted-global-organizations/ #CyberAttacks #SentinelLABS #SentinelOne #PurpleHaze #Security #UNC5174 #APT15 #China
Hackread - Latest Cybersecurity, Hacking News, Tech, AI & Crypto · Chinese-Linked Hackers Targeted 70+ Global Organizations, SentinelLABSFollow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread
Follow the Smoke | China-nexus Threat Actors Hammer At the Doors of Top Tier Targets
#SentinelOne #PurpleHaze
https://www.sentinelone.com/labs/follow-the-smoke-china-nexus-threat-actors-hammer-at-the-doors-of-top-tier-targets/
SentinelOneFollow the Smoke | China-nexus Threat Actors Hammer At the Doors of Top Tier TargetsThis report uncovers a set of related threat clusters linked to PurpleHaze and ShadowPad operators targeting organizations, including cybersecurity vendors.
Chinese Espionage Crews Circle SentinelOne in Year-Long Reconnaissance Campaign https://www.securityweek.com/chinese-espionage-crews-circle-sentinelone-in-year-long-reconnaissance-campaign/ #IncidentResponse #Malware&Threats #SentinelLabs #NationState #SentinelOne #PurpleHaze #Shadowpad #APT41 #China
Chinese Espionage Crews Circle SentinelOne in Year-Long Reconnaissance Campaign https://www.securityweek.com/chinese-espionage-crews-circle-sentinelone-in-year-long-reconnaissance-campaign/ #IncidentResponse #Malware&Threats #SentinelLabs #NationState #SentinelOne #PurpleHaze #Shadowpad #APT41 #China
Top cybersecurity firm SentinelOne reveals how China-linked hackers used stealth malware to probe its systems. It’s a reminder that even the best defenses have vulnerabilities—how secure are we really?
https://thedefendopsdiaries.com/sentinelone-shares-new-details-on-china-linked-breach-attempt/
#sentinelone
#cybersecurity
#chinahackers
#cyberthreats
#infosec
A tiny software glitch turned into a 7-hour global blackout at SentinelOne—how did one misconfiguration create such chaos, and what does it mean for our digital safety? Dive into the full story behind the outage.
https://thedefendopsdiaries.com/sentinelone-outage-an-in-depth-analysis-of-causes-and-impacts/
#sentinelone
#cybersecurity
#outageanalysis
#softwareflaw
#servicedisruption
SentinelOne Reports Services Are Back Online After Global Outage – Source: www.darkreading.com https://ciso2ciso.com/sentinelone-reports-services-are-back-online-after-global-outage-source-www-darkreading-com/ #rssfeedpostgeneratorecho #DarkReadingSecurity #CyberSecurityNews #DARKReading #SentinelOne
CISO2CISO.COM & CYBER SECURITY GROUP · SentinelOne Reports Services Are Back Online After Global Outage – Source: www.darkreading.comSource: www.darkreading.com - Author: Becky Bracken Please enable cookies. Sorry, you have been blocked You are unable to ac
Replied in thread
Thanks for the notice. I heard it here first on Mastodon.
Agents still claiming to be "online" but last check in time was a few hours ago.
SSO login to console borked.
This should be an interesting RCA.
"Server could not process the request" "internal server error"
AI-Generated SentinelOne DNS Query for WRECKSTEEL Detection – Source: socprime.com https://ciso2ciso.com/ai-generated-sentinelone-dns-query-for-wrecksteel-detection-source-socprime-com/ #rssfeedpostgeneratorecho #CyberSecurityNews #SOCPrimePlatform #SentinelOne #socprimecom #WRECKSTEEL #UncoderAI #socprime #Blog
CISO2CISO.COM & CYBER SECURITY GROUP · AI-Generated SentinelOne DNS Query for WRECKSTEEL Detection – Source: socprime.comSource: socprime.com - Author: Steven Edwards How It Works Uncoder AI streamlines threat detection in SentinelOne by automa
https://attgm.com/mxdr/
שירות MXDR שלנו מבוסס SentinelOne ייתן לכם שקט נפשי:
תגובה מהירה לאיומים
ניטור 24/7 ע”י מומחי סייבר
חקירה וזיהוי מתקפות בזמן אמת
הגנה מנוהלת שמזהה, מגיבה ומנטרלת.
דברו איתנו עכשיו #CyberSecurity #MXDR #SentinelOne
ATTGM ConsultingMXDRשירות MXDR שלנו מבוסס על פלטפורמה XDR של חברת SentinelOne, חברה המובילה בתחום EDR, XDR . פתרונות הגנה על Active Directory. ניהול אירועי סייבר
SentinelOne Targeted by North Korean IT Workers, Ransomware Groups, Chinese Hackers https://www.securityweek.com/sentinelone-targeted-by-north-korean-it-workers-ransomware-groups-chinese-hackers/ #IncidentResponse #cyberespionage #fakeITworkers #SentinelOne #NorthKorea #China
SentinelOne Targeted by North Korean IT Workers, Ransomware Groups, Chinese Hackers https://www.securityweek.com/sentinelone-targeted-by-north-korean-it-workers-ransomware-groups-chinese-hackers/ #IncidentResponse #cyberespionage #fakeITworkers #SentinelOne #NorthKorea #China