SentinelOne: Console Access Restored After Global Platform Outage

Initial root cause analysis ‘suggests this is not a security incident,’ the cybersecurity vendor said Thursday.

SentinelOne said that it has restored access to its widely used consoles following a global platform outage Thursday, which reportedly lasted several hours.

The cybersecurity vendor said in a post that initial root cause analysis into the outage “suggests this is not a security incident.”

In the initial advisory posted online Thursday, SentinelOne confirmed that it had “experienced an outage that is impacting commercial customer consoles.”

The company said it had notified all customers and partners about the outage.

“We are aware of ongoing console outages affecting commercial customers globally and are currently restoring services,” SentinelOne said in the message to customers and partners, which was posted online.

“Customer endpoints are still protected at this time, but managed response services will not have visibility,” the vendor said in the message. “Threat data reporting is delayed, not lost. Our initial [root cause analysis] suggests this is not a security incident. We apologize for the inconvenience and appreciate your patience as we work to resolve the issue.”

While it was not immediately clear when the outage started, reports to outage tracker StatusGator began just before 10 a.m., EST, and continued for several hours into the mid-afternoon.

That aligns with the timing of SentinelOne’s advisory, which indicated as of 2:10 p.m., EST, that “services are actively being restored and consoles are coming online.”

By 3:41 p.m., EST, SentinelOne reported that “access to consoles has been restored for all customers following today’s platform outage and service interruption.”

“We continue to validate that all services are fully operational,” the company said in the update to its online advisory.

SentinelOne said in an email to CRN Thursday evening that the company did not have further information to share beyond the statement posted online.

The reportedly hours-long outage follows the widely felt July 2024 IT outage caused by a faulty update from CrowdStrike, a top rival to SentinelOne. The outage impacted 8.5 million Microsoft Windows devices and led to several days of disruptions in air travel and numerous other industries.

For SentinelOne, the outage also came the day after the company reported its latest quarterly results, which beat Wall Street expectations but also trimmed the vendor's revenue forecast.

The reduction in the revenue forecast, attributed by executives to “heightened macro uncertainty,” led shares in SentinelOne to sink 11.3 percent, to $17.43 a share, in after-hours trading Wednesday evening.