Findings
Generator
Configuration
Lucidum Reverse
Architecture
Statistics
← All Findings
Vendor:
SentinelOne Singularity XDR
FIN-281
Weight:
5
4
3
2
1
Confidence:
High
Medium
Low
Edited:
2026-03-06 09:03
Verified
What It Detects
An endpoint is running an outdated SentinelOne agent AND has active threats in its threat list. The outdated agent may lack the latest detection signatures, remediation capabilities, or behavioral analysis rules needed to fully neutralize the detected threats. This creates a situation where threats are known to exist but the agent defending against them is operating with diminished capability, increasing the risk of failed remediation or threat re-emergence.
MITRE ATT&CK Techniques
Comma-separated, e.g. T1078, T1190
Checks
read-only
Field
Operator
Value
Agent Updated (True/False)
equals
False
Threat List
not_empty
Remediation
×
×
×
×
×
+ Add item
Why It Matters
×
×
×
×
+ Add item
Save Changes
Export Lucidum