The new security platform for Linux servers from SentinelOne claims best-in-class detection, prevention and remediation against sophisticated malware and exploit-based attacks
Endpoint security business SentinelOne, is extending its security products to Linux servers for data centres and cloud servers, with a real-time security protection powered by machine learning and intelligent automation.
SentinelOne uses a lightweight autonomous agent to monitor all activity in both kernel and user space (including files, processes, memory, registry, network, etc.) on the protected device. Each agent leverages the SentinelOne Dynamic Behavior Tracking (DBT) Engine which uses sophisticated machine learning to predict threats across any vector against a full context of normal application behavior.
Once malicious activity is detected SentinelOne immediately employs a series of automated mitigation and quarantine processes to eliminate the threat in real-time. SentinelOne also maintains a detailed audit trail of activity for forensic analysis and reporting which is delivered to the management console in real-time.
The SentinelOne EPP solution is currently certified by AV-TEST to meet regulatory requirements for antivirus protection on both OS X and Windows machines, with Linux certification under way. Theplatform with support for Linux is available immediately from SentinelOne and its business partners worldwide.
“As we have seen, Linux endpoints, whether they are servers or other devices, are not immune to malware and other forms of attack,” said Tomer Weingarten, CEO of SentinelOne. “To address this new threat plane, SentinelOne EPP now provides the same exceptional level of integrated threat detection, prevention and remediation for Linux machines as it does for Windows and OS X devices.”