SentinelOne

“That translates into a tremendous opportunity.” AI and automation are reshaping not just how we protect enterprises, but how we build value for customers. SentinelOne CEO Tomer Weingarten sat down with CRN to talk about what’s next for autonomous security and securely harnessing generative AI.

🚦 Prince Group Chairman Indicted in Forced-Labor Crypto Scam, PowerSchool Hacker Sentenced to 4 Years, DPRK Adopts EtherHiding, and Microsoft Defender Flaws Enable Auth Bypass 🚦 This is the week in cyber. This is SentinelOne’s Good, Bad, and Ugly cyber news roundup. ⬇️ ✅ GOOD: Prince Group chairman indicted & PowerSchool hacker sentenced • The U.S. DOJ unsealed an indictment against Chen Zhi, chairman of Prince Holding Group, for operating forced-labor scam compounds in Cambodia tied to “romance baiting” crypto fraud, involving billions in stolen funds. • In Massachusetts, Matthew Lane pleaded guilty and was sentenced to 4 years for hacking the PowerSchool system and extorting data belonging to students and educators. ⚠️ BAD: DPRK’s UNC5342 hides malware in blockchain via EtherHiding • North Korean hackers (UNC5342) have adopted EtherHiding, embedding malware into smart contracts on Ethereum and BNB chains to deliver payloads stealthily. • This novel tactic blurs the line between “crypto operations” and cyber espionage, making attribution and response much harder. 🤢 UGLY: Microsoft Defender EDR authentication flaws let attackers bypass controls • Critical vulnerabilities in Microsoft Defender for Endpoint (DFE) allow post-breach adversaries to bypass authentication, spoof telemetry, and upload malicious artifacts to investigation packages. • In effect, a compromised threat actor can use DFE itself as a vector to evade detection and confuse response. Follow us for weekly GBU with practical defenses leaders can act on: https://s1.ai/GBU8-Wk42

New in Cloud Security: Turn Compliance from a Checkbox into a Competitive Edge. Introducing Custom Compliance in SentinelOne Singularity Cloud Security. What’s new: Build and enforce your own cloud compliance frameworks—then monitor them continuously across environments. Why it matters: One-size-fits-all benchmarks (NIST, HIPAA, GDPR, CIS, etc.) rarely match your unique risk, geos, or customer obligations. Customization turns compliance from a checkbox into a business accelerator. How it works: ⚡ Create frameworks with controls → sub-controls → cloud security rules. ⚡ Mix and match from 45+ existing frameworks—or write your own rules. ⚡ Map controls, assign owners, and track adherence via a unified dashboard. ⚡ Automate evidence & reports on a schedule for always-ready audits. Where it helps: - Multi-geo SaaS/payment teams juggling overlapping regulations. - Healthcare orgs needing controls beyond HIPAA (e.g., bespoke access/activity logging). - Financial services tailoring to PCI DSS + GDPR + local standards without redundancy. Between the lines: Custom compliance replaces manual workarounds with policy-driven automation—so security can move at the speed of the business. Go deeper: 🔗 Blog post→ https://s1.ai/CstmCompl ⛅ CNAPP → http://s1.ai/CNAPP 📄 2025 Cloud Security Report → https://s1.ai/ClRprt-25 💻 Request a 30-min demo → https://s1.ai/CNAPPDemo

📺 Just A Sec: October Live Cybersecurity Briefing. In each episode, we break down what actually matters in cyber this month—no decks, no fluff, just frontline takeaways you can use now. We tackle the latest real-world incidents and intelligence. Our hosts discuss the most elusive adversaries, emerging hacking techniques, and the hidden forces shaping our digital world.

🚨 Starting Soon 🚨 Get front-row access to SentinelLABS researchers unpacking one of the first cases of LLM-powered malware found in the wild. 🧠 Our Just a Sec livestream starts at 12 p.m. PT—and we will be answering your questions. ⁉️

🌎 “Being different was actually commonplace where I grew up—and that has shaped how I lead and connect today.” - Adriana Corona, Senior Director Product Management, AI SIEM Platform, SentinelOne As a leader whose career spans computer science, UX, and AI cybersecurity, Adriana has built a reputation for adaptability and bold problem-solving. A first-generation Mexican American, she grew up at the intersection of cultures—an experience that fuels her commitment to belonging and authentic leadership. Today, Adriana channels that perspective into mentoring the next generation of talent and shaping inclusive teams that thrive. She proves that growth in tech isn’t about fitting a mold—it’s about setting the standard by redefining it. 👉 Read more about Adriana’s journey here: https://s1.ai/hf9dj

🚨 Breaking News from CRN 🚨 From cloud security to SIEM, AI and agents could shake up the cybersecurity tools market, as we know it, said our CEO, Tomer Weingarten, as he laid out his vision for the next gen of cyber platforms at the XChange Best of Breed Conference 2025. "SentinelOne is moving aggressively to become a centralized platform for orchestrating all security tools and data sources — including products from third-party vendors — in order to provide the real-time, autonomous security that partners and customers are calling for, SentinelOne Co-founder and CEO Tomer Weingarten said Tuesday." "You can really see their vision of becoming a security orchestration platform and being an orchestrator. I thought that was really intriguing," said Jack S., CTO of Oversee My IT. To learn more, read the article by Kyle Alspach: https://s1.ai/CRN-Orche

Boundless innovation: This is OneCon 2025 🔥💜 ➡️ Session catalog is now LIVE - https://lnkd.in/gbmBKKS5 OneCon is more than a conference—it’s a live demonstration of what’s possible when cyber defenders, builders, and innovators come together. Get ready for keynotes, threat-hunting competitions, and hands-on collaboration with the brightest in our industry. 🔗 See the full agenda—and register at OneCon.io

When innovation leads, recognition follows. 🏆 SentinelOne is honored to be named the Most Valuable Vendor, EMEA, by Pax8—a testament to how AI-native cybersecurity continues to outperform legacy players and empower partners everywhere. Thank you, Pax8 and our EMEA community, for believing in a new standard of protection. Join our partner network.

🧠 From LABScon 2025 to our Just a Sec Livestream. Get a window into one of SentinelLABS’s latest discovery: LLM-powered malware spotted in the wild. This Wednesday, Oct 15 • 12 p.m. PT. Front-row access. No slides, no fluff. RSVP to our LinkedIn Live event to hear directly from some of the researchers who tracked it—what they found, how they analyzed it, and what defenders should know next.