The global cyber security landscape today is fraught with risks. New and dangerous forms of malware, highly coordinated ransom attacks, and state-sponsored cyber-attacks against infrastructure and industry are all on the rise. The tools and practices of the past are no longer adequate to keep pace with the threats we face today, let alone the unknown threats of tomorrow.
Responding to these threats is a major concern of IT professionals and Managed Service Providers (MSPS) like Triella. This requires ongoing evaluation of incidents, responses, and best practices of the industry, and a holistic approach to security across systems that goes beyond the firewall perimeter to halt threats wherever they appear on the network, and limit access across and between platforms.
Among the steps we have taken over the past two years are the mandatory adoption of two-factor authentication for user login to the TriCloud platform, the implementation of a “Zero Trust” software install control tool called Threatlocker, and the migration of all our agreement clients to a new best in class enterprise detection and response application called SentinelOne.
SentinelOne has recently captured news headlines, not only for its highly profitable Initial Public Offering, but for its effectiveness against two high profile cyber-attacks:
In early 2020, a massive breach of the Solarwinds software occurred in which attackers inserted a “backdoor” into their Orion software platform – a tool used by thousands of technology companies to manage customers and computers assets – leading to numerous further comprises of Solarwind’s clients and their client’s clients. The total damage and cost caused by this incident, both in money and compromised data, remain unknown.
In early June 2021, the IT management software company Kaseya again came under cyber-attack, impacting thousands of its customers across at least 17 countries. Like with the Solarwinds hack, the attack was coordinated to target the manufacturer of software products used by managed service providers to support their clients, thus both attacks have serious downstream effects on clients whose service providers use these products. (Triella does not use Kaseya or Solarwinds products)
In both these incidents, SentinelOne was successful where other anti-malware products failed in halting the malicious software variants involved, thus protecting their customers from a potentially devastating event. SentinelOne uses a patented autonomous AI learning model to identify and respond to threats across the system without the need for virus definitions or signatures to spot hostile behavior and take action until a human can intervene.
If you are concerned about your exposure to cyber threats, or have not changed or reviewed your antivirus solution in the past year, considering adopting SentinelOne. Contact us now to get started or to learn more at 647.426.1004 ext.227.
Sean Kirby is a Help Desk Manager at Triella. We are a technology consulting company specializing in providing technology audits, planning advice, project management and other CIO-related services to small and medium-sized firms. Sean can be reached at 647.426.1004. For additional articles, go to our blog page. Triella is a VMware Professional Partner, Microsoft Certified Partner, Citrix Solution Advisor – Silver, Dell Preferred Partner, Authorized Worldox Reseller and a Webroot Reseller.
© 2021 by Triella Corp. All rights reserved. Reproduction with credit is permitted.