Combine cutting-edge XDR technology, multi-signal threat intelligence and 24/7 Elite Threat Hunters to help you build a world-class security operation.
Our team delivers the fastest response time in the industry. Threat suppression within just 4 hours of being engaged.
Cyber risk and advisory programs that identify security gaps and build security strategies to address them.
XDR with machine learning that eliminates noise, enables real-time detection and response, and automatically blocks threats.
24/7 SOC-as-a-Service with unlimited threat hunting and incident handling.
Proactive threat intelligence, original threat research and a world-class team of seasoned industry veterans.
Extend your team capabilities and prevent business disruption with expertise from eSentire.
Stop ransomware before it spreads.
Meet regulatory compliance mandates.
Detect and respond to zero-day exploits.
End misconfigurations and policy violations.
Defend third-party and supply chain risk.
Prevent disruption by outsourcing MDR.
Adopt a risk-based security approach.
Meet insurability requirements with MDR.
Protect your most sensitive data.
Defend brute force attacks, active intrusions and unauthorized scans.
Guard endpoints by isolating and remediating threats to prevent lateral spread.
Investigation and threat detection across multi-cloud or hybrid environments.
Remediate misconfigurations, vulnerabilities and policy violations.
Defend brute force attacks, active intrusions and unauthorized scans.
THE THREAT On February 20th, ConnectWise confirmed that two recently disclosed ScreenConnect vulnerabilities are now under active exploitation. The vulnerabilities are currently tracked as…Feb 09, 2024
THE THREAT On February 7th, CISA, NSA, FBI, along with Five Eyes intelligence partners, published a joint advisory related to state-sponsored threat actors from the People’s Republic of…
eSentire is The Authority in Managed Detection and Response Services, protecting the critical data and applications of 2000+ organizations in 80+ countries from known and unknown cyber threats. Founded in 2001, the company’s mission is to hunt, investigate and stop cyber threats before they become business disrupting events.
Waterloo, ON–February 7, 2024 – eSentire, Inc., the Authority in Managed Detection and Response (MDR), today announced that three of Australia’s top Value-Added Resellers (VARs): Advance Vision Technology, Exigo Tech, and Rubicon 8 have joined eSentire’s CRN 5-Star e3 partner…
We provide sophisticated cybersecurity solutions for Managed Security Service Providers (MSSPs), Managed Service Providers (MSPs), and Value-Added Resellers (VARs). Find out why you should partner with eSentire, the Authority in Managed Detection and Response, today.
We believe a multi-signal approach is paramount to protecting your complete attack surface. See why eSentire MDR means multi-signal telemetry and complete response.
See how our 24/7 SOC Cyber Analysts and Elite Threat Hunters stop even the most advanced cyberattacks before they disrupt your business.
Choose the right mix of Managed Detection and Response, Exposure Management, and Incident Response services to strengthen your cyber resilience.
Try our interactive tools including the MITRE ATT&CK Tool, the SOC Pricing Calculator, the Cybersecurity Maturity Assessment, and our MDR ROI Calculator.
Read the latest security advisories, blogs, reports, industry publications and webinars published by eSentire's Threat Response Unit (TRU).
See why 2000+ organizations count on eSentire to build resilience and prevent business disruption.
Since the onset of the COVID-19 pandemic, most businesses across a wide range of industries have begun using Quick Response (QR) codes to provide a contactless experience for their customers. The QR code is a square pixelated barcode that can be read by digital devices such as your smartphone camera.
These codes are often used for many legitimate purposes, such as helping you navigate to a website, set up multi-factor authentication (MFA) for a software application, access Wi-Fi, and more. For example, restaurants used QR codes in place of physical menus, and retail stores used them to share detailed product information with their customers.
Unfortunately, due to the abstract design of QR codes, it’s nearly impossible to tell where the code will direct you to. Unlike traditional phishing attacks where you may be able to identify a suspicious URL by hovering over the hyperlink to see if the destination URL matches the text URL provided to you, QR codes hide the URL, making it difficult for you to detect.
This has presented many threat actors with ample opportunities to exploit QR codes to embed malicious URLs containing malware or phishing websites to collect your sensitive data.
In fact, our Threat Response Unit (TRU) recently investigated an Adversary-in-the-Middle (AiTM) phishing attack in which the threat actor(s) impersonated one of our customers’ HR personnel and used a QR code to entice the employee into scanning it with their phone.
Recently, we have seen a significant rise in the use of QR code phishing attacks, known as “Qishing” or “Quishing.” Instead of providing a direct text link for users to click, threat actors use QR codes in phishing emails to bypass link filtering and security controls.
The subject matter of the QR phishing emails often changes, but the common thread is asking users to scan a QR code with their phone. Scanning the QR code brings users to a malicious website that often mimics a genuine platform like Microsoft Office 365 and asks them to log in. Once the users enter their credentials, they are shared directly with the threat actor.
Attackers benefit from the QR phishing attack tactic because phones and other mobile devices are often less secure, given that security teams don’t have visibility into the camera or browser activity.
At their core, QR codes are the same as any other link to a web page, so it’s best to apply the same scrutiny you would when clicking a link. Ask yourself:
Your phone can help you preview where the QR code links to, however, these can sometimes be truncated.
Open your camera app and hover over the QR code. A link preview should be displayed on the screen, as seen in the image below.
If your employees receive an email suspected of phishing, they must know to report the emails as soon as possible to prevent others from falling victim to QR Code phishing attacks.
More importantly, you must establish a safe cyber culture at your organization and encourage your employees to report phishing attacks, especially if they fall for the scam. The goal here is so your security team can isolate the affected device ASAP to prevent lateral spread.
At eSentire, we have rolled out a “Report a Phish” button organization-wide within our Microsoft Outlook applications so our employees can report phishing emails immediately. Once a user clicks the button, a dialogue box opens with two important questions:
After the user answers the questions and submits the form by clicking “Report Email,” they’re presented with the following information. At this point, they can review and click “Close and Delete” to complete the reporting process.
Threat actors are constantly evolving their tactics, techniques, and procedures (TTPs) to develop novel attack methods. So, you shouldn’t expect a one-time training exercise to be sufficient in raising security awareness with your employees.
The key is implementing a training program that can be iterated upon, especially since employees don’t always understand where they go wrong, limiting their ability to ward off real threats. Therefore, you need a comprehensive phishing and security awareness training program that tests the capabilities of your team to understand phishing threats and the escalation procedure, and more importantly, trains them continuously.
Our Managed Phishing and Security Awareness Training (PSAT) program helps you identify risk and test user resilience to enable behavioral change with your employees and generate measurable results across your organization. Here’s how our PSAT program works:
Our end-to-end service alleviates the resources required to keep your employees resilient against the most sophisticated social engineering tactics (e.g., phishing, SEO poisoning, business email compromises, and more).
To learn more about how our PSAT program can help you drive behavioural change with your employees and protect your organization, connect with an eSentire cybersecurity specialist.
eSentire, Inc., the Authority in Managed Detection and Response (MDR), protects the critical data and applications of 2000+ organizations in 80+ countries, across 35 industries from known and unknown cyber threats by providing Exposure Management, Managed Detection and Response and Incident Response services designed to build an organization’s cyber resilience & prevent business disruption. Founded in 2001, eSentire protects the world’s most targeted organizations with 65% of its global base recognized as critical infrastructure, vital to economic health and stability. By combining open XDR platform technology, 24/7 threat hunting, and proven security operations leadership, eSentire's award-winning MDR services and team of experts help organizations anticipate, withstand and recover from cyberattacks. For more information, visit: www.esentire.com and follow @eSentire.