SentinelLabs

@[email protected]
690 Followers
75 Following
37 Posts
We are the Threat Intelligence and Malware Analysis Team for @SentinelOne
Websitelabs.sentinelone.com
SentinelLabsJan 26, 2024
KrebsOnSecurity RSSJan 25, 2024

Using Google Search to Find Software Can Be Risky

https://krebsonsecurity.com/2024/01/using-google-search-to-find-software-can-be-risky/

#ALittleSunshine #LatestWarnings #malvertising #WebFraud2.0 #domaintools #SentinelOne #TomHegel #google

Using Google Search to Find Software Can Be Risky – Krebs on Security

SentinelLabsOct 10, 2023
Phil StokesOct 10, 2023
Social engineers being ready for #macOS #Sonoma πŸ˜…πŸŽ£.
faf7692c44fcf4fae055b9ba57ed327e85ef6d5e #malware #security
Safariupdate (Obfuscated #poseidon)
SentinelLabsMar 17, 2023
SentinelLabsMar 16, 2023

Winter Vivern | Uncovering a Wave of Global Espionage πŸ‡·πŸ‡ΊπŸ‡§πŸ‡Ύ

✴️ Targeting Govs - Poland, Ukraine, India, Vatican, Slovakia, and others.
✴️ Interesting non-gov targeting.
✴️ A scrappy / creative group with limited resources.
✴️ Active for years w/ little attention.

Happy Hunting - https://s1.ai/Winter-V

Winter Vivern | Uncovering a Wave of Global Espionage

SentinelLabs uncover a previously unknown set of espionage campaigns conducted by Winter Vivern advanced persistent threat (APT) group.

SentinelOne
SentinelLabsMar 16, 2023

Winter Vivern | Uncovering a Wave of Global Espionage πŸ‡·πŸ‡ΊπŸ‡§πŸ‡Ύ

✴️ Targeting Govs - Poland, Ukraine, India, Vatican, Slovakia, and others.
✴️ Interesting non-gov targeting.
✴️ A scrappy / creative group with limited resources.
✴️ Active for years w/ little attention.

Happy Hunting - https://s1.ai/Winter-V

Winter Vivern | Uncovering a Wave of Global Espionage

SentinelLabs uncover a previously unknown set of espionage campaigns conducted by Winter Vivern advanced persistent threat (APT) group.

SentinelOne
SentinelLabsMar 9, 2023

🧊 πŸ”₯
A Linux version of the IceFire ransomware has been observed in recent network intrusions in media and entertainment sector.

First post by our newest SentinelLabs member
Alex Delamotte --> http://s1.ai/IceFire πŸ’œ

IceFire Ransomware Returns | Now Targeting Linux Enterprise Networks

New Linux version of the IceFire ransomware have been observed in recent network intrusions of media and entertainment enterprises.

SentinelOne
SentinelLabsFeb 20, 2023
SentinelLabsFeb 16, 2023

New SentinelLabs Research on WIP26 - https://s1.ai/WIP26

🟣 New actor targeting telco in the Middle East
🟣 Abuses Microsoft 365 Mail, Google Firebase, and Dropbox for C2
🟣 Targeted WhatsApp msgs -> Dropbox -> loader -> backdoors

by @milenkowski and team

WIP26 Espionage | Threat Actors Abuse Cloud Infrastructure in Targeted Telco Attacks

A new threat cluster has been targeting telecommunication providers in the Middle East and abusing Microsoft, Google and Dropbox cloud services.

SentinelOne
SentinelLabsFeb 16, 2023

New SentinelLabs Research on WIP26 - https://s1.ai/WIP26

🟣 New actor targeting telco in the Middle East
🟣 Abuses Microsoft 365 Mail, Google Firebase, and Dropbox for C2
🟣 Targeted WhatsApp msgs -> Dropbox -> loader -> backdoors

by @milenkowski and team

WIP26 Espionage | Threat Actors Abuse Cloud Infrastructure in Targeted Telco Attacks

A new threat cluster has been targeting telecommunication providers in the Middle East and abusing Microsoft, Google and Dropbox cloud services.

SentinelOne
SentinelLabsFeb 15, 2023
SentinelLabsFeb 14, 2023

πŸ’œβ€‹ Join the @vxunderground & @SentinelOne Malware Research Challenge (VUSMC) --

Submit your previously unpublished research and you could be featured on both the SentinelOne blog and the VXUG site. And that's not all: The best research will win a brand new, sleek and powerful MacBook Pro!

https://s1.ai/vx-s1

Vx-Underground & SentinelOne Malware Research Challenge (VUSMC)

Submit your research and you could win a powerful MacBook Pro! Also, be featured on both the SentinelOne Blog and VXUG site.

SentinelOne
SentinelLabsFeb 14, 2023

πŸ’œβ€‹ Join the @vxunderground & @SentinelOne Malware Research Challenge (VUSMC) --

Submit your previously unpublished research and you could be featured on both the SentinelOne blog and the VXUG site. And that's not all: The best research will win a brand new, sleek and powerful MacBook Pro!

https://s1.ai/vx-s1

Vx-Underground & SentinelOne Malware Research Challenge (VUSMC)

Submit your research and you could win a powerful MacBook Pro! Also, be featured on both the SentinelOne Blog and VXUG site.

SentinelOne
SentinelLabsFeb 13, 2023
SentinelLabsFeb 9, 2023

Seen in the wild: Cloud credentials phishing attacks are now deploying Google Ads targeting Amazon Web Services (AWS) cloud logins. By @hegel

https://www.sentinelone.com/blog/cloud-credentials-phishing-malicious-google-ads-target-aws-logins/

Cloud Credentials Phishing | Malicious Google Ads Target AWS Logins

Threat actors target AWS login credentials with phishing websites and malverts returned in Google web searches.

SentinelOne