eSentire

As your business scales, so do the threats you're facing. Your team needs a partner that can detect threats in seconds and contain them in minutes. At eSentire, our sole mission is to protect your critical data, technology, and people from cyber threats. We combine: ✅ Total Attack Surface Visibility ✅ XDR Cloud Platform Technology ✅ Proprietary Machine Learning Models ✅ 24/7 Threat Hunting The result? eSentire MDR delivers complete Response to stop threats before they become business-disrupting events. Combat-ready and battle-tested, Team eSentire stands guard so you don't have to. An attack on you is an attack on us. Full stop. Get started now: https://bit.ly/3HAc6c8

Ransomware costs are set to explode to $265B by 2031. 💰💻 Here’s why: 👾 Advanced ransomware tactics: Attackers are constantly refining their malware to evade defenses. ❌ Nation-state ransomware gangs: State-sponsored groups are fueling the rise in attacks with sophisticated strategies. 😱 Refined extortion techniques: Double extortion (demanding ransom for data restoration and preventing data leaks) is becoming more common. It's clear that a single solution won’t cut it anymore. A multi-layered defense strategy that includes phishing and cybersecurity awareness training, multi-signal MDR, and swift incident response is essential to staying ahead of evolving ransomware threats. #CybersecurityAwarenessMonth #Ransomware #ThreatIntelligence #CyberResilience

The latest version of the TRU Weekly Threat Briefing is now out! 🦉 In this edition, we're covering the following three stories: 1️⃣ New Variants of BeaverTail and InvisibleFerret Malware Identified By impersonating recruiters to deliver malware, North Korean threat actors gain access to a variety of industries, leading to the theft of sensitive data and cryptocurrency, as well as potentially enabling espionage. 2️⃣ OpenAI - Influence and Cyber Operations OpenAI continues to monitor for the abuse of its platform for influence and cyber operations. While OpenAI indicates that there has not been successful virality of content, the full impact of this activity remains unclear. 3️⃣ U.S. Wiretap Systems Targeted in China-Linked Hack Targeting Internet Service Providers (ISPs) in a breach of this scale would provide espionage-focused threat actors with a trove of valuable information, ranging from privileged conversations to sensitive technical data and financial information. The impact of this intrusion depends on whether persistence was established and exfiltration was completed. Read the full threat briefing for more details! ⬇ #threatintelligence #threathunting #cyberthreats

Lara and Tiffany Trump's X accounts were breached to promote a fraudulent cryptocurrency scheme. 🚩 The compromise of the Trumps’ social media accounts is the latest in a string of attacks on celebrities and high-profile executives’ X accounts. The attack bypassed weak 2FA methods proving that WebAuthn security keys are crucial for protecting accounts. 🎓 Lessons from eSentire TRU: - Misconfigured security options on X can negate the advantages of security keys/passkeys. - Be wary of unexpected DMs and links—they often signal phishing attempts. - Recent incidents involved sophisticated phishing and SIM swapping attacks. 🛡️ Recommendations: Adopt WebAuthn using FIDO2 hardware authenticators while simultaneously disabling less secure MFA methods to significantly enhance your security against phishing and unauthorized access. Read the full post for an in-depth guide on employing the most secure configurations for your social account: https://bit.ly/4f1ek56 #Cybersecurity #ManagedDetectionAndResponse #TRUInsights

In a highly interconnected world, how do you shift your approach to security to not only protect your organization and its data, but also build resilience against emerging threats? If you're Hexagon AB, the first step is to transition from a decentralized security model to a centralized model, increasing efficiency across the organization. In this article with Cyber Magazine, Steve Lorimer, the Group Privacy & Information Security Officer at Hexagon AB, shares how the company moved away from point solutions and consolidated their security tool stack. Read more about Hexagon's transformation journey: https://lnkd.in/g2Kht-_a

Outsourcing your security operations isn’t just about cutting costs—it’s about elevating your entire cybersecurity posture. 🌍 Partnering with a proven MDR provider gives you access to specialized expertise and operational excellence that’s hard to match in-house. With a 24/7 Security Operations Center (SOC) powered by dedicated professionals, advanced threat detection, and proactive threat hunting, your organization gains the real-time response capabilities needed to stay ahead of threats. ⚔️ #MDR #CyberSecurity #ThreatDetection

2023 and 2024 have seen an increase in signed Windows App Package abuse by a variety of threat actors including FIN7, FakeBat, Batloader, Rhadamanthys and others. While Microsoft introduced the modern installer format (.MSIX) to mitigate the issue, adversaries can take advantage of seemingly endless supply of code signing certificates. So...how hard is it to get certified? On October 23, Spence Hutchinson, our Staff Threat Intelligence Researcher, will give a talk at SecTor diving into the code signing certificate malware ecosystem and demonstrate how adversaries are exploiting loopholes in validation requirements to sign their malicious installer packages. If you're attending SecTor, this is one briefing you won't want to miss! #sector

Struggling to find the right mix of skills and expertise to support your security program? 🧠🛡️ We've heard time and time again that there is a big talent shortage in the cybersecurity industry. In fact, there's a 0% unemployment rate! And yet, security leaders are often challenged with hiring for the right roles. How do you make sure you're filling the right gaps, and making getting the best expertise to build your in-house team? In our recent ebook, The Security Leader's Guide to Building a Proven Security Program, we covered how security leaders should hire and grow the right team. Swipe for guidance on hiring the most sought-after cybersecurity roles and how to retain top talent to protect your organization 👉

⚠️ New insights on Poseidon Stealer Malware from the eSentire Threat Response Unit (TRU). TRU reveals the deceptive malware targeting macOS via Google Ads, posing as an AI installer. Even after terminal closure, it steals data like browser info, cryptocurrency wallets, and keychain contents. 🎓 Key Takeaways: - Endpoint monitoring is crucial to detect hidden malware. - Monitor macOS script executions to catch hidden threats. 🛡️ TRU Recommendations: - Implement Phishing and Security Awareness Training (PSAT) to educate users. - Use a dedicated software center for safer, corporate-approved software downloads. - Enhance endpoint protection strategies to combat sophisticated malware tactics. Read the full TRU Positive here: https://bit.ly/3ZZ9q4l

Generative AI (GenAI) is rapidly transforming how we operate, but it's also opening new doors for cyber threats. 😱 🤖 From data breaches to deepfakes, these AI-powered tools are vulnerable to serious risks that traditional security tools can't handle. Dr. Jeff Schwartzentruber, our Sr. Machine Learning Scientist, explores the dark side of Gen AI in his new article for Cybersecurity Insiders. According to Jeff, key security challenges include data exfiltration, generation of false information, and digital replication. Unfortunately, traditional security tools aren't enough since they "rely on identifying known threats through signatures, hashes, or other identifiers, which are ineffective against the constantly evolving nature of GenAI models." So, what's the solution? Jeff suggests considering newer security tools, such as User and Entity Behavior Analytics (UBEA) and automated model red teaming to preemptively address GenAI security risks. GenAI is a game-changer, but only if you manage its risks. Be proactive and ensure your AI innovation stays secure. 💡🔒 👉 Read the full article here: https://bit.ly/480R9pk #Cybersecurity #GenAI #DigitalTransformation #AI #EnterpriseSecurity #MDR