Visit our on-demand library to see sessions for VB Transform 2023. Sign up here
SentinelOne, the standalone cybersecurity company, recently unveiled its suite of cloud data security products, comprising two products: Threat Detection for Amazon S3 and Threat Detection for NetApp.
The company said these “high-speed malware detection” solutions are specifically designed to protect organizations that use Amazon S3 object storage and NetApp file storage from evolving malware threats in their systems. cloud environments and their corporate networks.
SentinelOne says the latest offerings further strengthen the company’s Singularity Cloud product family, complementing SentinelOne’s existing cloud workload security product line.
This extension aims to give customers the ability to proactively detect, investigate, and mitigate threats across a wide range of cloud environments, including public, private, and hybrid clouds.
VB Transform 2023 on demand
Did you miss a session of VB Transform 2023? Sign up to access the on-demand library for all of our featured sessions.
Malware on the move
As businesses increasingly adopt cloud-based solutions, they become more susceptible to sophisticated malware attacks. To address this pressing challenge, SentinelOne said it is stepping up its focus on cloud capabilities and taking a modern approach to protecting cloud storage and workloads from malware.
New threat detection for NetApp and Amazon S3 products can automatically scan every file added to these two storage platforms for file-borne and zero-day malware, detecting and quarantining malicious files in real time.
“Adversaries are generating increasingly sophisticated malware attacks using generative AI, and as cloud providers themselves have pointed out, cloud storage is one more delivery channel. plus used to deliver them,” Ely Kahn, vice president of product management, cloud security, and product AI/ML at SentinelOne, told VentureBeat. “Our cloud data security products bring AI-powered threat detection to cloud storage, enabling enterprises to automatically detect malware lurking there in a modern way.”
According to Kahn, many cloud data protection solutions rely solely on signature-based approaches. By contrast, he said, SentinelOne takes a hybrid approach, using both signature-based and non-signature-based methods, driven by the company’s proprietary AI detection engines.
Additionally, the platform includes a unique “Protection Mode”, allowing customers to configure automatic quarantine for malicious files and objects, a feature missing in competing products that only offer detection mode.
“Our new products can scan new files/objects in milliseconds, and our customers tell us we’re three times faster than anything they’ve tested,” Kahn told VentureBeat. “While many competitors require customer data to be pulled into their cloud environment for analysis, we ensure that no customer file/object ever leaves their cloud environment, which addresses privacy and sovereignty needs. Datas.”
Leverage AI to detect cloud threats in real time
SentinelOne points out that the cornerstone of its new security products is its proprietary Static AI engine. Unlike traditional methods, this AI engine does not rely on signatures for malware detection.
The company explained that the AI engine has undergone extensive training on hundreds of millions of malware samples, which allows it to effectively detect unknown malware, including exploit-of-the-day malware. zero.
The engine also has a native understanding of typical attributes found in malware files.
Cloud security operations have always been separate from overall enterprise security operations. Kahn says that as enterprises gain a better understanding of cloud security, they aim to consolidate all threat management, including for cloud and data threats, into a unified process.
Kahn said the company has worked closely with NetApp and Amazon Web Services to ensure seamless integration of SentinelOne’s offerings with storage solutions, resulting in the optimal combination of security and performance for their shared customers.
“Reconfigurability capabilities let customers decide whether they want threat detection coverage across all of their S3 buckets or just some of them in certain accounts. Customers can also decide whether they want certain accounts or buckets configured in protection mode and others in detection mode,” he explained. “If there are some compartments with highly sensitive operational workloads, the customer can configure those with detection mode and all others with our protection mode.”
Kahn said the solutions represent a significant step forward in SentinelOne’s mission to help customers prevent tomorrow’s attacks today, but are only a first step.
“AI will energize the threat landscape, and we will continue to leverage it to provide additional workload security and cloud data security products that organizations can use to detect and prevent the spread of software. malware in their cloud environments and corporate networks because it emerges at machine speed,” Kahn told VentureBeat.
VentureBeat’s Mission is to be a digital public square for technical decision makers to learn about transformative enterprise technology and conduct transactions. Discover our Briefings.