Documents
0
Active Sources
0
CVEs
0
IOCs
0

Intelligence Feed

ALL BleepingComputer Check Point Cisco Talos CrowdStrike ESET Elastic Kaspersky Krebs Mandiant Microsoft Palo Alto Proofpoint Rapid7 Recorded Future SentinelOne THN
ALL CRITICAL HIGH MEDIUM LOW
Living Off the Pipeline: Defending Against CI/CD Subversion
SentinelOne Labs 15 May 2026 SEV 4/10
supply_chain malware Conti Play
Living Off the Pipeline: Defending Against CI/CD Subversion May 15, 2026 SentinelOne The software supply chain has become one of the most attractive targets for modern adversaries, but the attacks seen in 2025 did not focus solely on poisoning dependencies or hijacking packages. Increasingly, attackers are targeting the infrastructure that powers the software delivery lifecycle itself. Build servers, CI/CD runners, package managers, and developer workstations all sit inside an organization’s trusted delivery path.
The Good, the Bad and the Ugly in Cybersecurity – Week 20
SentinelOne Labs 15 May 2026 SEV 4/10
vulnerability data_breach Conti Play
The Good, the Bad and the Ugly in Cybersecurity – Week 20 May 15, 2026 SentinelOne The Good | Authorities Dismantle Major Dark Web Marketplaces & Arrest Key Admins European authorities dismantled a lucrative, rebooted version of the ‘Crimenetwork’ cybercrime marketplace and arrested its primary administrator in Mallorca, Spain . When German police first disrupted the original platform in late 2024 and apprehended its operator, a 35-year-old suspect allegedly constructed an identical infrastructure to resume operations just days after. In the last two years, the resurrected criminal hub has amassed an extensive user base, attracting over 22,000 registered individuals and 100 specialized vendors who actively trafficked in stolen data, illegal services, and narcotics.
The Convergence of Cloud Secrets & AI Risk
SentinelOne Labs 13 May 2026 SEV 8/10
vulnerability cloud_security Conti
The Convergence of Cloud Secrets & AI Risk May 13, 2026 SentinelOne In 2025, the enterprise risk landscape experienced a paradigm shift: the adoption of AI and LLMs officially becoming the primary driver of cloud risk. Today, almost of organizations now leverage AI in at least one business function. With this level of integration, the risk of AI is now outpacing traditional security guardrails, culminating in a highly complex and interconnected attack surface.
The Good, the Bad and the Ugly in Cybersecurity – Week 19
SentinelOne Labs 08 May 2026 SEV 6/10
vulnerability malware Conti
The Good, the Bad and the Ugly in Cybersecurity – Week 19 May 8, 2026 SentinelOne The Good | Courts Sentence Karakurt Ransomware Negotiator & Two DPRK IT Worker Scheme Facilitators Federal authorities have successfully secured a nearly nine-year prison sentence for Deniss Zolotarjovs, a Latvian national extradited to the U.S. for his critical role in the Karakurt extortion syndicate . Operating as a specialized “cold case” negotiator, Zolotarjovs ( aka Sforza_cesarini) systematically targeted victims who had previously stopped communications with the extortion group to avoid paying the ransom .
The Good, the Bad and the Ugly in Cybersecurity – Week 18
SentinelOne Labs 01 May 2026 SEV 4/10
supply_chain vulnerability Silk Typhoon
The Good, the Bad and the Ugly in Cybersecurity – Week 18 May 1, 2026 SentinelOne The Good | Authorities Dismantle State-Backed Espionage & Cybercrime Rings This week, authorities successfully secured the extradition of Xu Zewei, an alleged Chinese Ministry of State Security (MSS) contract hacker , from Italy to the U.S. to face severe federal cyberespionage charges. Operating alongside the Silk Typhoon group, Xu systematically compromised internet-facing systems during a highly coordinated intelligence-gathering campaign between February 2020 and June 2021.
The Good, the Bad and the Ugly in Cybersecurity – Week 17
SentinelOne Labs 24 Apr 2026 SEV 4/10
malware ransomware Volt Typhoon Flax Typhoon
The Good, the Bad and the Ugly in Cybersecurity – Week 17 April 24, 2026 SentinelOne The Good | Two Cybercrime Leaders Face Justice for Fraud, Identity Theft & Extortion Tyler Robert Buchanan, a 24-year-old British national believed to be a leader of the UNC3944 cybercrime group, has pleaded guilty in the U.S . to wire fraud and aggravated identity theft. Prosecutors say Buchanan and four accomplices stole at least $8 million in cryptocurrency by targeting employees at multiple organizations with SMS phishing attacks between 2021 and 2023.
Hypersonic Supply Chain Attacks: One Solution That Didn’t Need to Know the Payload
SentinelOne Labs 22 Apr 2026 SEV 4/10
supply_chain vulnerability
Hypersonic Supply Chain Attacks: One Solution That Didn't Need to Know the Payload Hypersonic Supply Chain Attacks: One Solution That Didn’t Need to Know the Payload April 22, 2026 Matt Berry In 2026, the question for security leaders is not whether a supply chain attack is coming. Every serious organization should assume it is. The question is whether their defense architecture can stop a payload it has never seen before.
Automation at Machine Speed: Rethinking Execution in Modern Cybersecurity
SentinelOne Labs 20 Apr 2026 SEV 3/10
vulnerability cloud_security Conti
Automation at Machine Speed: Rethinking Execution in Modern Cybersecurity April 20, 2026 SentinelOne In our previous posts, we explored the Identity Paradox and the rising risks at the enterprise edge . Together, these blogs highlighted how attackers gain initial access and leverage unmanaged devices to escalate privileges. The next phase of intrusion – execution – demonstrates how modern adversaries, aided by automation and AI, operate at speeds and a scale that challenge traditional human-centered defenses.
The Good, the Bad and the Ugly in Cybersecurity – Week 16
SentinelOne Labs 17 Apr 2026 SEV 6/10
vulnerability malware Conti
The Good, the Bad and the Ugly in Cybersecurity – Week 16 April 17, 2026 SentinelOne The Good | U.S. Authorities Seize W3LL Phishing Ring & Jail DPRK IT Worker Scheme Facilitators The FBI has dismantled the “W3LL” phishing platform, seized its infrastructure, and arrested its alleged developer in its first joint crackdown on a phishing kit developer together with Indonesian authorities. Sold for $500 per kit, W3LL-enabled criminals to clone login portals, steal credentials, bypass using adversary-in-the-middle techniques, and launch business email compromise attacks.
Frontier AI Reinforces the Future of Modern Cyber Defense
SentinelOne Labs 16 Apr 2026 SEV 4/10
vulnerability iot_ot_security Conti Play
Frontier AI Reinforces the Future of Modern Cyber Defense April 16, 2026 SentinelOne The latest announcements from OpenAI and Anthropic mark another important step forward for frontier AI. They also reinforce something we’ve believed at SentinelOne® for years: the future of cybersecurity will be shaped by AI-native defense. SentinelOne has worked closely with frontier labs for years, including OpenAI, Anthropic, and Google DeepMind, and naturally continues to do so.