SentinelOne says services restored after hours-long outage
Add Axios as your preferred source to
see more of our stories on Google.
Photo: John Keeble/Getty Images.
SentinelOne says its services have been restored following an hours-long outage today that took down its commercial customer consoles — the interface security teams use to monitor and manage protections across their networks.
Why it matters: Without console access, teams were effectively flying blind — unable to view threat telemetry, assess incidents in progress, or take manual response actions.
Yes, but: While security teams didn't have visibility, the products continued working in the background to block malicious activity. Security teams just couldn't see what was being blocked or flagged during the outage.
The intrigue: One of SentinelOne's biggest competitors — CrowdStrike — suffered a major global outage last summer that knocked about 8.5 million Windows devices offline.
- SentinelOne has not yet disclosed the root cause of Thursday's outage, but said its early internal data suggests it was not caused by a malicious cyberattack.
- "We apologize for the inconvenience," the company wrote in a blog post Thursday during the outages.
Driving the news: The outage came just one day after SentinelOne lowered its 2026 earnings forecast and missed expectations for quarterly annual recurring revenue in its latest earnings report.
- The company has also been in the spotlight in Washington this year after President Trump signed a memo calling for an investigation into former CISA Director Chris Krebs, who at the time was a top executive at SentinelOne.
The big picture: SentinelOne is a publicly traded cybersecurity company that uses artificial intelligence to detect, prevent and respond to malicious activity across a company's devices, like a laptop or server.
- Customers include U.S. federal agencies, major airlines, manufacturing companies and other large firms.
Go deeper: How a single software update is shutting down the internet
