/////////////////////////////////////////////////////////
• Exploits of browser – Drive-by
downloads, Flash, Java, Javascript, VBS,
IFrame/HTML5, plug-ins
• Live/insider scripts that include
Powershell, WMI, PowerSploit, VBS
• Live/insider credentials such as
Mimikatz, credentials scraping, tokens
However, the real question is not around the
types of attacks but their long-term effects,
the metrics cybercriminals use to launch
these attacks and the coding they use.
Every listed type of cyberattack evolves
by the hour and without strong preexecution
infrastructure, even attacks that
are successfully mitigated can still cause
tremendous damage to the endpoint.
SentinelOne’s single-agent technology uses
a Static AI engine to provide pre-execution
protection. The Static AI engine replaces
traditional signatures and obviates recurring
scans that kill end-user productivity.
On execution, SentinelOne’s Behavioral
AI engines track all processes and their
interrelationships regardless of how long
they are active. When malicious activities are
detected, the agent responds automatically
at machine speed.
Its Behavioral AI is vector-agnostic, covering
file-based malware, scripts, weaponised
documents, lateral movement, fileless
malware and even zero-day threats.
SentinelOne’s Automated EDR provides
rich forensic data and can mitigate threats
automatically, perform network isolation and
auto-immunise the endpoints against newly
discovered threats. As a final safety measure,
SentinelOne can even rollback an endpoint
to its pre-infected state.
t
mote working
www.intelligentcio.com