The eSentire Blog

TRU Positive/Bulletin

3 M

DLTMiner campaign targeting on-premise Microsoft Exchange servers using common IOCs

Adversaries don’t work 9-5 and neither do we. At eSentire, our 24/7 SOCs are staffed with Elite Threat Hunters and…

READ NOW →

Threat Intelligence

5 M

The SolarWinds supply chain compromise (Part 2):

In our recent post about the SolarWinds “Sunburst” supply chain compromise, we examined the importance of…

READ NOW →

Threat Intelligence

11 M

The SolarWinds supply chain compromise:

Even in a year as eventful as 2020, the SolarWinds supply chain breach is making headlines around the world due to…

READ NOW →

Threat Response Unit

5 M

Hands-on Threat Research Leads to Resilient Zerologon Detection

Even in the all-too-plentiful world of vulnerabilities and exploits, CVE-2020-1472 (aka Zerologon) is special,…

READ NOW →

Threat Response Unit

7 M

The SunWalker Incident: Netwalker and SunCrypt Ransomware Double-Double Exploitation

Summary: After eight long hours attempting to siege an online education institution – including initial access,…

READ NOW →

Threat Intelligence

4 M

How Current Ransomware Tactics Look

You can’t rush the process of smoking a brisket, what I consider the peak of BBQ prowess. For a 15-pound brisket,…

READ NOW →

Threat Intelligence

8 M

New BOLO: Phishing Attacks that Customize O365 Pages with Your Branding

Phishing actors continue to deploy convincing Office 365 phishing attacks by hosting pages on trusted cloud…

READ NOW →
Page
of 20