What We Do
How we do it
Resources
TRU INTELLIGENCE CENTER
Our Threat Response Unit (TRU) publishes security advisories, blogs, reports, industry publications and webinars based on its original research and the insights driven through proactive threat hunts.
View Threat Intelligence Resources →
SECURITY ADVISORIES
Aug 17, 2022
Increase in Observations of Socgholish Malware
THE THREAT Starting in early August 2022 and continuing through the month, eSentire identified a significant increase in Socgholish (aka. FakeUpdates) malware incidents. Socgholish is a loader type…
Read More
View all Advisories →
Company
ABOUT ESENTIRE
About Us
eSentire is The Authority in Managed Detection and Response Services, protecting the critical data and applications of 1500+ organizations in 80+ countries from known and unknown cyber threats. Founded in 2001, the company’s mission is to hunt, investigate and stop cyber threats before they become business disrupting events.
Read about how we got here
Leadership Work at eSentire
LATEST PRESS RELEASE
Sep 20, 2022
eSentire Recognized as Top Global MDR Provider by MSSP Alert, CrowdStrike and G2
Waterloo, ON - September 21, 2022 – eSentire, Inc., the Authority in Managed Detection and Response (MDR), celebrated multiple industry recognitions as the leading global MDR provider, over the last week: Named #9, and the top pure play MDR provider on MSSP Alert’s Top 250 MSSPs global rankingRecognized as the CrowdStrike 2022 Global MSSP Partner of the Year Earned G2’s industry-renowned status…
Read More
Partners
PARTNER PROGRAM
e3 Ecosystem
We provide sophisticated cybersecurity solutions for Managed Security Service Providers (MSSPs), Managed Service Providers (MSPs), and Value-Added Resellers (VARs). Find out why you should partner with eSentire, the Authority in Managed Detection and Response, today.
Learn more
ECOSYSTEM PARTNER RESOURCES
Apply to become an e3 ecosystem partner with eSentire, the Authority in Managed Detection and Response.
Login to the Partner Portal for resources and content for current partners.
Search
Resources
Blog — May 28, 2020

Your Endpoints Need a Strong Defense Team

Explore the proven capabilities of eSentire esENDPOINT.

3 minutes read
Speak With A Security Expert Now

Understand attacker behavior to effectively hunt endpoint threats

There’s one undeniable constant in endpoint security…attackers will always find new ways to avoid detection. Organizations must defend against traditional attacks and hunt for new attack behaviors.

With a rise in distributed workforces, it’s now more important than ever that endpoint security becomes a top priority. According to The Ponemon Institute’s Third Annual Study on the State of Endpoint Security Risk – January 2020, 68 percent of responding organizations experienced an endpoint attack that compromised data and 80 percent of successful endpoint breaches were new or unknown zero-day attacks. 1

Unfortunately, when it comes to security priorities a focus on prevention and staffing is still prevalent. According to the Ponemon survey, the top three priorities for organizations are reducing the number of security solutions (50 percent), investing more in prevention (46 percent) and hiring more staff (41 percent).2

The problem with this approach is that prevention technology is not enough, and your staff can’t keep up. Technology tools and automation are an important piece of the puzzle for stopping known attacks in their tracks, but you cannot ring an alarm on the elusive. Understanding and predicting attacker behavior is a critical component in the evolution of endpoint security and protecting against zero-day attacks.

“Organizations can no longer rely on traditional antivirus solutions and a defensive approach to endpoint security. The new normal is a proactive approach to threat hunting that understands and predicts attacker behavior before business disruption can occur,” said Mark Sangster, Vice President and Industry Security Strategist at eSentire.

When the best offense is a good defense

Attacker behavior continues to evolve and become more evasive. VMware Carbon Black observed evasion behaviors in 90 percent of malware samples analyzed, a clear indication that attackers are increasingly attempting to circumvent legacy security solutions.3 Organizations must continuously evolve their people, processes and technology to adjust to the increasingly elusive behavior of attackers.

“Too much of security is about reverse engineering or rethinking the attacks of yesterday, as opposed to how are we proactively thinking about the attacks of tomorrow,” said Tom Corn, SVP of Security Products at VMware.

The new normal is a holistic endpoint security solution that:

“Your modern endpoint security should combine leading endpoint protection technology and predictive security modeling with 24x7 monitoring, machine learning and elite threat hunting enables organizations to detect and stop the elusive,” said Mark Sangster, Vice President and Industry Security Strategist at eSentire.

eSentire esENDPONT

esENDPOINT combines eSentire’s elite threat hunting with VMware Carbon Black’s next-generation antivirus and endpoint detection and response capabilities to eliminate blind spots traditional prevention misses. VMware Carbon Black’s predictive threat modeling combines with eSentire’s proprietary machine learning technology to continuously tune the latest detection measures to prevent known attacks and identify potential unknown and zero-day threats. Recognized threats are automatically blocked at the endpoint with VMware Carbon Black’s technology and an elite team of eSentire’s threat hunters rapidly investigate and neutralize the most elusive of threats, preventing lateral spread.

Learn more about strengthening your endpoint defense team in the Turning the Elusive into the Tangible on-demand webinar on how to protect your endpoints. Watch Now!

1, 2 The Third Annual Study on the State of Endpoint Security Risk – Ponemon Institute, January 2020

3 VMware Carbon Black - 2020 Cybersecurity Outlook Report

Join 100,000+ Security Leaders

Get notified of the latest news, intel and helpful tools & assets. You can unsubscribe anytime.

By clicking the button below I confirm that I have read and agree to the eSentire privacy policy.

View Most Recent Blogs
eSentire
eSentire

eSentire is the Authority in Managed Detection and Response, protecting the critical data and applications of 1500+ organizations in 80+ countries from known and unknown cyber threats. Founded in 2001, the company’s mission is to hunt, investigate and stop cyber threats before they become business disrupting events. Combining cutting-edge machine learning XDR technology, 24/7 Threat Hunting, and proven security operations leadership, eSentire mitigates business risk, and enables security at scale. The Team eSentire difference means enterprises are protected by the best in the business with a named Cyber Risk Advisor, 24/7 access to SOC Cyber Analysts & Elite Threat Hunters, and industry-leading threat intelligence research from eSentire’s Threat Response Unit (TRU). eSentire provides Managed Risk, Managed Detection and Response and Incident Response services. For more information, visit www.esentire.com and follow @eSentire.