What We Do
How we do it
Resources
SECURITY ADVISORIES
Jul 26, 2021
PetitPotam NTLM Relay Attack
THE THREAT PetitPotam is a variant of NTLM Relay attacks discovered by security researcher Gilles Lionel. Proof of Concept code released last week [1] relies on the Encrypting File System Remote (EFSRPC) protocol to provoke a Windows host into performing an NTLM authentication request against an attacker-controlled server, exposing NTLM authentication details or authentication certificates.…
Read More
View all Advisories →
Company
ABOUT eSENTIRE
About Us
eSentire is The Authority in Managed Detection and Response Services, protecting the critical data and applications of 1000+ organizations in 70+ countries from known and unknown cyber threats. Founded in 2001, the company’s mission is to hunt, investigate and stop cyber threats before they become business disrupting events.
Read about how we got here
Leadership Work at eSentire
LATEST PRESS RELEASE
Jul 12, 2021
Tecala and eSentire Partner to Protect Enterprises across APAC from Business-Disrupting Cyber Attacks
Sydney, 12 July, 2021 - Tecala, Australia’s award-winning technology services and IT consulting provider, today announced it has chosen eSentire, the global Authority in Managed Detection and Response (MDR) cybersecurity services, as their exclusive MDR solution provider in Australia and New Zealand. This partnership will enable Tecala to augment its cybersecurity practice and offer enterprises…
Read More
Partners
PARTNER PROGRAM
Partners
Our award-winning partner program offers financial rewards, sales and marketing tools and personalized training. Accelerate your business and grow your revenue by offering our world-class Managed Detection and Response (MDR) services.
Learn about our Partner Program
Resources
Blog — Jun 17, 2021

10 Hot Incident Response Companies To Watch In 2021

2 min read

Originally published by Cybercrime Magazine

Who to call when the cybercriminals get through

If the famous bon mot about death and taxes were to be written today, there would likely have been a third element: cybersecurity attacks.

Breaches are coming thicker and faster than ever, with the FBI recently reporting that it received four times as many cybersecurity complaints per day during 2020 than it did in 2019 — which means that, more than ever, your company needs to have a detailed incident response plan so you’re ready to act when it happens to you.

Unless you have your own army of in-house cybersecurity responders waiting for your call, odds are that you’re going to need an incident response company to have your back. But in today’s broad and deep cybersecurity market, how do you choose the right one?

A recent Forrester Wave report outlined three key capabilities that you should ensure any potential incident response firm can provide. These include immersive training facilities to support real-world breach training; the ability to outsource capabilities as necessary; and the ability to perform mapping of post-breach remediation implementations.

Business maturity (loosely correlated with size) is important in this space, since the effectiveness of any incident response will start with investment in innovative tools but finish based on the availability of experienced professionals who know how to apply them. Most IR providers offer the option of an ongoing retainer, which is often married with proactive security audits and customized planning to ensure the fastest possible response if things go south.

Forensic analysis is an important part of the offering – so much so that Gartner refers to this market sector as digital forensics and incident response (DFIR) services. The explicit addition of forensics as a capability is a reminder that responding to an incident is not only about stopping it – but about learning from the event, so you can put steps in place to ensure that it doesn’t happen again.

eSentire has been featured as one of 10 Hot Incident Response Companies to Watch in 2021 by Cybercrime Magazine.

About eSentire: Promising a four-hour global response from a DFIR team filled with “battle-tested and highly certified” staff — the group is named after Artemis, the Greek goddess of hunting — it’s clear that eSentire approaches incident response on the front foot. Its response is built around an arsenal of forensics and investigation tools that are utilized to shut down the attack quickly, then segue into an end-to-end incident response lifecycle that ferrets out the root causes of the breach to avoid recurrence.

Review the Top 10 Hot IR list from Cybercrime Magazine here

To learn more about eSentire’s Cyber Investigations Portfolio and 4-hour remote threat suppression SLA globally visit https://www.esentire.com/what-we-do/incident-detection-and-digital-forensics .

If your business is experiencing a security incident or has been breached, contact eSentire for Emergency Incident Response at 1-866-579-2200, or +44 (0)8000 443242.

eSentire
eSentire

eSentire is the Authority in Managed Detection and Response, protecting the critical data and applications of 1000+ organizations in 70+ countries from known and unknown cyber threats. Founded in 2001, the company’s mission is to hunt, investigate and stop cyber threats before they become business disrupting events. Combining cutting-edge machine learning XDR technology, 24/7 Threat Hunting, and proven security operations leadership, eSentire mitigates business risk, and enables security at scale. The Team eSentire difference means enterprises are protected by the best in the business with a named Cyber Risk Advisor, 24/7 access to SOC Cyber Analysts & Elite Threat Hunters, and industry-leading threat intelligence research from eSentire’s Threat Response Unit (TRU). eSentire provides Managed Risk, Managed Detection and Response and Incident Response services. For more information, visit www.esentire.com and follow @eSentire.