What we do
How we do it
Resources
Company
Partners
Get Started
What we do
How we do it
Resources
Company
Partners
Request a Quote
What We Do
ESENTIRE SERVICES
Managed Risk Programs

Cyber risk and advisory programs that identify security gaps and build strategies to address them.
Managed Detection & Response

MDR that provides improved detection, 24/7 threat hunting, end-to-end coverage and most of all, complete Response.
Digital Forensics & Incident Response

Our team delivers the fastest response time in the industry. Threat suppression within just 4 hours of being engaged.
ESENTIRE PLATFORM
Atlas Extended Detection & Response (XDR)

XDR with Machine Learning that eliminates noise, enables real-time detection and response, and automatically blocks threats.
ESENTIRE PEOPLE
Cyber Resilience Team

Be protected by the best from Day 1.
Security Operations Center (SOC)

24/7 Threat Investigation and Response.
Threat Response Unit

Expert hunting, research and content.
ESENTIRE MDR FOR MICROSOFT

Visibility and Response Across Your Entire Microsoft Security Ecosystem

Learn More
How we do it
MDR PACKAGES AND PRICING
eSentire MDR Essentials
Multi-signal MDR services for small to medium businesses with 24/7 SOC support, threat hunting, and response expertise.
eSentire MDR Expert
Multi-signal MDR services with co-managed log service, Cyber Risk Advisor support, and added signal visibility and containment.
eSentire MDR Elite
Multi-signal MDR services with a dedicated Cyber Risk Advisor, risk reduction roadmap and executive meeting support.
 Request a Quote
INDUSTRIES
Insurance Construction Finance Legal Manufacturing Private Equity Healthcare Retail Food Supply SLED
USE CASES
Ransomware
Stop ransomware attacks before they disrupt your business.
Third-party Risk
Protect against third-party and supply chain risk.
Sensitive Data
Protect your most sensitive data.
Cloud Misconfiguration
Eliminate misconfigurations and policy violations.
Zero Day Attacks
Detect and respond to zero-day exploits.
Cyber Risk
Adopt a risk-based approach to cybersecurity.
Cybersecurity Compliance
Meet cybersecurity regulatory compliance mandates.
Do More With Less
Prevent business disruption by outsourcing MDR.
24/7 MDR SIGNALS
Network

Defend brute force attacks, active intrusions and unauthorized scans.
Endpoint

Safeguard endpoints 24/7 by isolating and remediating threats to prevent lateral spread.
Log

Investigation and enhanced threat detection across multi-cloud or hybrid environments.
Cloud

Configuration escalations, policy and posture management.
Insider Threat

Detects malicious insider behavior leveraging Machine Learning models.
Resources
FROM THE BLOG
GuLoader VBScript Variant Returns with PowerShell Updates
Read more
BatLoader Impersonates Midjourney, ChatGPT in Drive-by Cyberattacks
Read more
PaperCut Vulnerability Exploited to Deliver Cryptocurrency Miner to…
Read more
Visit the eSentire Blog →
RESOURCES
Case Studies

Customer testimonials and case studies.
Videos

Stories on cyberattacks, customers, employees, and more.
Reports

Cyber incident, analyst, and thought leadership reports.
Webinars

Demonstrations, seminars and presentations on cybersecurity topics.
Data Sheets

Information and solution briefs for our services.
Cybersecurity Tools

MITRE ATT&CK Framework, Cybersecurity Assessment, SOC Calculator & more
Visit Resource Library →
TRU INTELLIGENCE CENTER
Our Threat Response Unit (TRU) publishes security advisories, blogs, reports, industry publications and webinars based on its original research and the insights driven through proactive threat hunts.
View Threat Intelligence Resources →
SECURITY ADVISORIES
Jun 01, 2023
Critical Vulnerability in MOVEit Transfer
THE THREAT eSentire is aware of reports relating to the active exploitation of a currently unnamed vulnerability impacting Progress Software’s managed file transfer software MOVEit Transfer.…
Read More
View all Advisories →
Company
ABOUT ESENTIRE
About Us
eSentire is The Authority in Managed Detection and Response Services, protecting the critical data and applications of 2000+ organizations in 80+ countries from known and unknown cyber threats. Founded in 2001, the company’s mission is to hunt, investigate and stop cyber threats before they become business disrupting events.
Read about how we got here
Leadership Work at eSentire
EVENT CALENDAR
May
31
NetDiligence Cyber Risk Summit

eSentire will be a Sponsor at the NetDeligence Cyber Risk Summit in Fort…
May
31
Memorial Insights Special

eSentire will be attending Avant's Memorial Insights Special.
Jun
01
AppDirect Boston Regional Event

eSentire will be attending this event.
View Event Calendar →
LATEST PRESS RELEASE
Mar 20, 2023
Exertis and eSentire Partner to Deliver 24/7 Multi-Signal MDR, Digital Forensics & IR Services and Exposure Management to Organisations Across the UK, Ireland, and Europe
Basingstoke, UK– 20 March, 2023. Leading technology distributor, Exertis, announced today that it has bolstered its cybersecurity services, adding eSentire, the Authority in Managed Detection and Response (MDR), to its Enterprise portfolio of offerings. eSentire’s award-winning, 24/7 multi-signal MDR, Digital Forensics & Incident Response (IR), and Exposure Management services will be available…
Read More
View Newsroom →
Partners
PARTNER PROGRAM
e3 Ecosystem
We provide sophisticated cybersecurity solutions for Managed Security Service Providers (MSSPs), Managed Service Providers (MSPs), and Value-Added Resellers (VARs). Find out why you should partner with eSentire, the Authority in Managed Detection and Response, today.
Learn more
ECOSYSTEM PARTNER RESOURCES
Apply to become an e3 ecosystem partner with eSentire, the Authority in Managed Detection and Response.
Become an Ecosystem Partner →
Login to the Partner Portal for resources and content for current partners.
Partner Login →
Search
Resources
Resource Library Tools Case Studies Video Library Glossary Security Advisories Blog
Blog — Sep 30, 2020

Endpoints are the new cybersecurity front lines of defense

3 minutes read

SHARE:

Speak With A Security Expert Now
CrowdStrike and eSentire Logos

It seems customary now to start a blog post or report with some commentary about 2020 being a year of unprecedented change. We’ve probably all read, seen or heard so many statements along those lines that we tune them out as clichés.

But most clichés are based on truths and the reality is that when it comes to cybersecurity, 2020 really, truly has been a time of (unprecedented) change. Unfortunately, change in cybersecurity creates gaps in defenses and opportunities for attackers—and failing to evolve your defenses as quickly as possible can have very serious consequences.

Gates at the Barbarians

One significant change that manifested in 2020 is the dissolution of the traditional defensive fortress that surrounded digital assets. Previously, information and equipment was housed behind a robust firewall, with employees securely accessing network resources from endpoints within that trusted network (i.e., inside the fortress).

Now, with the widespread adoption of work from home (WFH) models, millions of employees are accessing network services from endpoints located on home networks, which are often “protected” by no more than consumer-grade equipment, which in many cases still have the default configuration and passwords.

Last year, barbarians would attack the gate to try to break through; in 2020, the gates are distributed all over the internet.

Plus, the increased use of VPN services compounds risk in two ways:

  1. In many cases, the VPN systems were rolled out very quickly, which has left services exposed and increased the attack surface
  2. Because the VPN assumes that anyone connecting to it using the proper credentials is trustworthy, an attacker who successfully compromises an endpoint (e.g., a home office worker’s corporate laptop) will enjoy tremendous privileges for lateral movement within the corporate network

This is no mere conjecture: in just the first six months of 2020—covering only the first few months of widespread WFH—CrowdStrike observed a dramatic increase in the number of attacks. Moreover, the nature of attacks is evolving: data from the same period shows more hands-on-keyboard attacks than in all of 2019.

Clearly, attackers are trying to take advantage of the dissolved security perimeter, so it’s crucial that organizations bolster their defenses accordingly.

What’s the major takeaway here? Modern and effective endpoint protection is the first and perhaps the most important line of defense.

Note: to learn more about the shifting front lines of cybersecurity, be sure to check out the on-demand webinar, “Future Forward: The Distributed World.” In this webinar, experts from eSentire and CrowdStrike examine real-world incidents to showcase the capabilities of attackers—and to highlight the necessity of endpoint protection.

Using endpoint protection effectively

Endpoint protection has come a very long way in recent years. Modern endpoint agents deliver a tremendous amount of threat signals and contextual telemetry and defensive capabilities, including next-generation antivirus and proactive threat hunting. Crucially, they also provide security analysts with a plethora of actions to take during investigation and containment operations.

However, with all of these capabilities comes added challenges and complexity. Selecting, deploying, configuring, managing and fully leveraging (e.g., for real-time triage and remediation, when required) modern endpoint protection technology can easily exceed most organizations’ IT resources, especially mid-market businesses.

These are just a few reasons why managed endpoint protection services—which enable rapid deployment and optimization of endpoint prevention and provide ongoing, dedicated support—are valuable and increasingly popular.

Working together, eSentire’s Managed Detection and Response (MDR) capabilities and CrowdStrike’s Endpoint Detection and Response (EDR) provide effective defense against, and fast containment of, the sophisticated endpoint attacks that threat actors employ. The visibility and quality of data provided by CrowdStrike’s Falcon platform, combined with the SOC analysis and threat hunting capabilities of the eSentire team, provide organizations with the strongest possible defense on the new cybersecurity front lines.


View Most Recent Blogs
Chris Braden
Chris Braden Vice President, Global Channels and Alliances

Chris Braden is a veteran sales and channel executive, bringing over 20 years experience building, leading, and executing successful programs around the world. In his current role as the Vice President, Global Channels and Alliances, he is responsible for eSentire's global channel program, overseeing strategic partner recruitment, international expansion, and growth with current partners through an improved enablement program. He is a 2019 CRN Channel Chief recipient.

Matthew Polly
Matthew Polly VP of Worldwide Business Development, Alliances, and Channels, CrowdStrike

Matthew Polly currently leads the Business Development and Global Alliances organizations for CrowdStrike. Matthew joined CrowdStrike in 2017 after building the partner business for AppDynamics, as it grew from an early stage startup to a $3.7B sale to Cisco. Prior to AppDynamics, Matthew had various sales, product marketing, and alliances roles at Informatica. Previous experience includes business intelligence strategy consulting, sales and marketing for a tech startup, and research for a venture capital fund. Matthew began his career as a corporate lawyer. He holds a J.D. from the University of Kentucky and a degree in English from the University of Virginia.

Are you experiencing a security incident or have you been breached? Call us now.
1-866-579-2200
Sales and Customer Support
North America
1-866-579-2200 EMEA
(0)8000 443242 Africa/APAC
+1 519 651 2200 Partner Login Get Started
What we do
How we do it
Resources
Company
Tools

The Authority in Managed Detection and Response.

2023 eSentire, Inc. All Rights Reserved.