Monday, March 20, 2023
  • About us
    • Write for us
    • Disclaimer
    • Terms of use
    • Privacy Policy
  • RSS Feeds
  • Advertise with us
  • Contact us
DefenceTalk
  • Home
  • Defense News
    • Defense & Geopolitics News
    • War Conflicts News
    • Army News
    • Air Force News
    • Navy News
    • Missiles Systems News
    • Nuclear Weapons
    • Defense Technology
    • Cybersecurity News
  • Military Photos
  • Defense Forum
  • Military Videos
  • Military Weapon Systems
    • Weapon Systems
    • Reports
No Result
View All Result
  • Home
  • Defense News
    • Defense & Geopolitics News
    • War Conflicts News
    • Army News
    • Air Force News
    • Navy News
    • Missiles Systems News
    • Nuclear Weapons
    • Defense Technology
    • Cybersecurity News
  • Military Photos
  • Defense Forum
  • Military Videos
  • Military Weapon Systems
    • Weapon Systems
    • Reports
No Result
View All Result
DefenceTalk
No Result
View All Result

SentinelOne Releases Free SUNBURST Attack Identification Assessment Tool

Tool Enables Enterprises to Emulate SUNBURST and Identify Cybersecurity Readiness

by Editor
January 7, 2021
in Cybersecurity
2 min read
0
Hacker ‘ceasefire’ gets little traction as pandemic fuels attacks
14
VIEWS

SentinelOne, the autonomous cybersecurity platform company, today released a free SUNBURST identification tool to help enterprises determine attack readiness. The open-source assessment tool allows users to identify if the SUNBURST malware variant at the heart of the SolarWinds attack campaign would have infected their devices.

The SUNBURST attack highlights the risks and realities of a supply-chain attack. Multiple third-party researchers report the cybersecurity products deployed in impacted enterprises. SentinelOne’s free utility tool helps enterprises of all sizes determine their readiness with their existing product set and team by helping any SolarWinds Orion customer determine impact retroactively. The tool also helps non-SolarWinds Orion customers determine if their endpoint vendor would have stopped this high-impact nation-state attack.

The release of SentinelOne’s SUNBURST tool follows SentinelOne’s confirmation that all of its customers are protected from SUNBURST, without requiring any updates to the SentinelOne XDR platform. The free tool is designed to identify processes, services, and drivers that SUNBURST attempts to identify on the victim’s machine and provide definitive evidence if a device would have been impacted.

“The sophistication and scale of the SolarWinds attack campaign presents a level of cyber risk that is rarely seen,” said Brian Hussey, VP of Cyber Threat Response, SentinelOne. “Many traditional antivirus and next-gen solutions lack native anti-tampering functionality and were disabled by SUNBURST prior to product updates being made, leaving thousands of organizations exposed. SentinelOne’s autonomous AI and robust anti-tampering capabilities have secured all of our customers against the attack. In addition to continually monitoring and testing the latest SUNBURST variants to ensure our customers remain protected, our SUNBURST tool allows the community at-large to easily measure their security tools’ effectiveness against SUNBURST activity and mitigate subsequent risk.”

The tool leverages the same logic that SUNBURST uses to obtain a list of running processes, services, and drivers. It then applies the same SUNBURST hashing algorithm, performs a blacklist check, and immediately provides check results on the user’s console.

In addition to the free assessment tool, SentinelOne has closely followed the campaign and provided regular in-depth analysis and technical guidance to customers and the cybersecurity community, including:

  • Analysis of the latest IOCs and threat artifacts
  • In-product hunting packs that enable customers to use SentinelOne’s Deep Visibility hunting module for one click retrospective hunts
  • Surge license authorization to assist customers and partners in need of solutions and assistance
  • Webinar briefings to help cybersecurity leaders communicate with executive and board audiences on today’s cybersecurity attack campaigns
Tags: cybersecuritynetwork securitysentinelonesolarwinds
Previous Post

France to purchase Northrop Grumman’s E-2D advanced Hawkeye

Next Post

Taiwan says Chinese fighter jets made record 380 incursions in 2020

Related Posts

US moves closer to retaliation over hacking as cyber woes grow

White House gives federal agencies 30 days to enforce TikTok ban

March 1, 2023

The White House on Monday gave federal agencies 30 days to purge Chinese-owned video-snippet sharing app TikTok from all government-issued...

If US DoD Wants #ArtificialIntelligence In Its Future, It Must Start Now

AI voice tool ‘misused’ as deepfakes flood web forum

February 1, 2023

A British AI firm said it was rethinking its "safeguards" after its audio tool was used to clone celebrity voices...

Next Post
Chinese Air Force Reveals J-20 Combat Formation

Taiwan says Chinese fighter jets made record 380 incursions in 2020

Latest Defense News

Hwasong-17 ICBM

North Korea fires ‘long-range’ missile as S. Korea president heads to Japan

March 16, 2023
North Korea fires multiple suspected cruise missiles

North Korea fires two ballistic missiles, Seoul says

March 14, 2023
Australia to get nuclear submarines in new US, British partnership

Australia to buy US nuclear subs in ambitious new pact

March 14, 2023
Su-35 Fighter Aircraft, Russian Air Force

Iran says deal reached to buy Russian fighter jets

March 13, 2023
Made in China: Saudi-Iran deal goes beyond Middle East, say analysts

Made in China: Saudi-Iran deal goes beyond Middle East, say analysts

March 13, 2023
North Korea says Kim ordered test of ‘new type’ of ICBM

North Korea adopts war deterrence measures: state media

March 13, 2023

Defense Forum Discussions

  • Royal Australian Navy Discussions and Updates 2.0
  • NZDF General discussion thread
  • Russia and the West
  • Australian Army Discussions and Updates
  • Royal Danish Navy
  • Foreign Interference in Canada
  • Airbus A400M German Air Force Luftwaffe arrival at Airpower 2022 AirShow Zeltweg Air Base LOXZ
  • Royal Australian Air Force [RAAF] News, Discussions and Updates
  • Algerian Armed Forces
  • Ukrainian - Russian War Memes.
DefenceTalk

© 2003-2020 DefenceTalk.com

Navigate Site

  • Defence Forum
  • Military Photos
  • RSS Feeds
  • About us
  • Advertise with us
  • Contact us

Follow Us

No Result
View All Result
  • Home
  • Defense News
    • Defense & Geopolitics News
    • War Conflicts News
    • Army News
    • Air Force News
    • Navy News
    • Missiles Systems News
    • Nuclear Weapons
    • Defense Technology
    • Cybersecurity News
  • Military Photos
  • Defense Forum
  • Military Videos
  • Military Weapon Systems
    • Weapon Systems
    • Reports

© 2003-2020 DefenceTalk.com