Tuesday, February 23, 2021
  • About us
    • Write for us
    • Disclaimer
    • Terms of use
    • Privacy Policy
  • RSS Feeds
  • Advertise with us
  • Contact us
DefenceTalk
  • Home
  • Defense News
    • Defense & Geopolitics News
    • War Conflicts News
    • Army News
    • Air Force News
    • Navy News
    • Missiles Systems News
    • Nuclear Weapons
    • Defense Technology
    • Cybersecurity News
  • Military Photos
  • Defense Forum
  • Military Videos
  • Military Weapon Systems
    • Weapon Systems
    • Reports
No Result
View All Result
  • Home
  • Defense News
    • Defense & Geopolitics News
    • War Conflicts News
    • Army News
    • Air Force News
    • Navy News
    • Missiles Systems News
    • Nuclear Weapons
    • Defense Technology
    • Cybersecurity News
  • Military Photos
  • Defense Forum
  • Military Videos
  • Military Weapon Systems
    • Weapon Systems
    • Reports
No Result
View All Result
DefenceTalk
No Result
View All Result

SentinelOne Releases Free SUNBURST Attack Identification Assessment Tool

Tool Enables Enterprises to Emulate SUNBURST and Identify Cybersecurity Readiness

by Editor
January 7, 2021
in Cybersecurity
2 min read
0
Hacker ‘ceasefire’ gets little traction as pandemic fuels attacks
12
SHARES
137
VIEWS

SentinelOne, the autonomous cybersecurity platform company, today released a free SUNBURST identification tool to help enterprises determine attack readiness. The open-source assessment tool allows users to identify if the SUNBURST malware variant at the heart of the SolarWinds attack campaign would have infected their devices.

The SUNBURST attack highlights the risks and realities of a supply-chain attack. Multiple third-party researchers report the cybersecurity products deployed in impacted enterprises. SentinelOne’s free utility tool helps enterprises of all sizes determine their readiness with their existing product set and team by helping any SolarWinds Orion customer determine impact retroactively. The tool also helps non-SolarWinds Orion customers determine if their endpoint vendor would have stopped this high-impact nation-state attack.

The release of SentinelOne’s SUNBURST tool follows SentinelOne’s confirmation that all of its customers are protected from SUNBURST, without requiring any updates to the SentinelOne XDR platform. The free tool is designed to identify processes, services, and drivers that SUNBURST attempts to identify on the victim’s machine and provide definitive evidence if a device would have been impacted.

“The sophistication and scale of the SolarWinds attack campaign presents a level of cyber risk that is rarely seen,” said Brian Hussey, VP of Cyber Threat Response, SentinelOne. “Many traditional antivirus and next-gen solutions lack native anti-tampering functionality and were disabled by SUNBURST prior to product updates being made, leaving thousands of organizations exposed. SentinelOne’s autonomous AI and robust anti-tampering capabilities have secured all of our customers against the attack. In addition to continually monitoring and testing the latest SUNBURST variants to ensure our customers remain protected, our SUNBURST tool allows the community at-large to easily measure their security tools’ effectiveness against SUNBURST activity and mitigate subsequent risk.”

The tool leverages the same logic that SUNBURST uses to obtain a list of running processes, services, and drivers. It then applies the same SUNBURST hashing algorithm, performs a blacklist check, and immediately provides check results on the user’s console.

In addition to the free assessment tool, SentinelOne has closely followed the campaign and provided regular in-depth analysis and technical guidance to customers and the cybersecurity community, including:

  • Analysis of the latest IOCs and threat artifacts
  • In-product hunting packs that enable customers to use SentinelOne’s Deep Visibility hunting module for one click retrospective hunts
  • Surge license authorization to assist customers and partners in need of solutions and assistance
  • Webinar briefings to help cybersecurity leaders communicate with executive and board audiences on today’s cybersecurity attack campaigns
Tags: cybersecuritynetwork securitysentinelonesolarwinds
Previous Post

France to purchase Northrop Grumman’s E-2D advanced Hawkeye

Next Post

Taiwan says Chinese fighter jets made record 380 incursions in 2020

Related Posts

Lockheed joins US DoD’s Platform One DevSecOps Software Initiative

Lockheed joins US DoD’s Platform One DevSecOps Software Initiative

February 3, 2021

The U.S. Air Force has added Lockheed Martin (NYSE:LMT) to Platform One, an advanced software development program that aims to...

California WeChat users claim China surveillance in lawsuit

California WeChat users claim China surveillance in lawsuit

January 21, 2021

California WeChat users sued its parent company Tencent on Wednesday, saying the mobile app is used for spying on and...

Next Post
Chinese Air Force Reveals J-20 Combat Formation

Taiwan says Chinese fighter jets made record 380 incursions in 2020

Latest Defense News

United States B-1B bomber training in the Australian Top End

USAF begins retirement of B-1 aircraft, paving way for B-21

February 22, 2021
Four Taiwan ex-intelligence officers charged with spying for China

Four Taiwan ex-intelligence officers charged with spying for China

February 22, 2021
Saudi arms producer in defence venture with Lockheed Martin

Saudi arms producer in defence venture with Lockheed Martin

February 22, 2021
Third NATO Alliance Ground Surveillance Aircraft Arrives at Sigonella

NATO’s first operational UAS flying unit

February 22, 2021
Israel and US begin Arrow 4 development

Israel and US begin Arrow 4 development

February 22, 2021
Norwegian Army Adding 20 CV90s to its Fleet

Norwegian Army Adding 20 CV90s to its Fleet

February 19, 2021

Defense Forum Discussions

  • Facebook War Against Australia
  • The Indonesian Army
  • Australian Army Discussions and Updates
  • Royal Australian Navy Discussions and Updates
  • Taiwan Navy News and Developments
  • China - Geostrategic & Geopolitical.
  • Space technology can help us preserve our environment
  • Royal Canadian Navy Discussions and updates
  • Royal New Zealand Navy Discussions and Updates
  • Afghanistan War
DefenceTalk

© 2003-2020 DefenceTalk.com

Navigate Site

  • Defence Forum
  • Military Photos
  • RSS Feeds
  • About us
  • Advertise with us
  • Contact us

Follow Us

No Result
View All Result
  • Home
  • Defense News
    • Defense & Geopolitics News
    • War Conflicts News
    • Army News
    • Air Force News
    • Navy News
    • Missiles Systems News
    • Nuclear Weapons
    • Defense Technology
    • Cybersecurity News
  • Military Photos
  • Defense Forum
  • Military Videos
  • Military Weapon Systems
    • Weapon Systems
    • Reports

© 2003-2020 DefenceTalk.com