Publicly-reported instances of DLL Side-Loading bypassing endpoint security products. Maintained on the same basis for every technique in the Index.
| Product | Entries | High-confidence | Most recent |
|---|---|---|---|
| Microsoft | 4 | 4 | 2026-05-11 |
| ESET | 2 | 2 | 2026-01-30 |
| McAfee | 1 | 1 | 2025-09-20 |
| eScan | 1 | 1 | 2024-04-23 |
| SentinelOne | 1 | 1 | 2026-05-14 |
| Xcitium | 1 | 1 | 2024-02-22 |
| Zabbix | 1 | 1 | 2025-10-03 |
| Product | Confidence | Disclosed | Source | |
|---|---|---|---|---|
| SentinelOne | high | 2026-05-14 | cybersecuritynews.com | record → |
| Microsoft | high | 2026-05-11 | The DFIR Report | record → |
| Microsoft | high | 2026-03-08 | cybernoz.com | record → |
| ESET | high | 2026-01-30 | labs.infoguard.ch | record → |
| Microsoft | high | 2025-11-01 | cybernoz.com | record → |
| Zabbix | high | 2025-10-03 | www.sentinelone.com | record → |
| McAfee | high | 2025-09-20 | www.tenable.com | record → |
| ESET | high | 2025-04-07 | cyberinsider.com | record → |
| eScan | high | 2024-04-23 | arstechnica.com | record → |
| Microsoft | high | 2024-03-13 | cybersecsentinel.com | record → |
| Xcitium | high | 2024-02-22 | scavengersecurity.com | record → |
Counts reflect distinct publicly-reported events on record; absence of an entry means no confirmed public report is on file.