Back to Resources
SentinelOne vs BundleMeUp/Bundlore (macOS )
SentinelOne vs BundleMeUp/Bundlore (macOS )
See how a Bundlore sample executes in the wild. The victim is lured into allowing the malware to launch with administrator privileges through its Adobe-look-alike UI. The threat makes use of numerous Living-off-the-Land utilities that are native to macOS. Endpoint security products that are not behavior or context-aware can easily fail to identify the malicious activity given the heavy reliance on built-in tools like Python, Curl, and Perl. SentinelOne fully detects and prevents all variants of this malware.
Subscribe to our channels:
Website: https://www.sentinelone.com/
LinkedIn: https://www.linkedin.com/company/sent…
Twitter: https://twitter.com/SentinelOne