The eSentire Blog

TRU Positive/Bulletin

17 M

DinDoor, DenoRAT, and NightshadeC2: Analyzing TAG-150's Evolving Tradecraft

What did we find?In June 2026, eSentire's Threat Response Unit (TRU) disrupted a malicious ClickFix-style command…

READ NOW →

TRU Positive/Bulletin

9 M

Trust Me, I'm IT: Threat Actors Deliver Deno-Based Backdoor "DenoGate" via Microsoft Teams

What did we find?In June 2026, eSentire's Threat Response Unit (TRU) identified a Microsoft Teams-based phishing…

READ NOW →

Threat Response Unit

5 M

Responding to the Klue Incident:

OverviewA supply chain attack against competitive intelligence platform Klue led to unauthorized access to…

READ NOW →

TRU Positive/Bulletin

17 M

Fortinet Vulnerability CVE-2026-35616 and EKZ Stealer, Attacking Obfuscating Compilers with Binary Ninja Workflows

What did we find?In May 2026, eSentire's Threat Response Unit (TRU) detected EKZ Stealer within a customer…

READ NOW →

TRU Positive/Bulletin

25 M

Nimbus RAT: How Threat Actors Are Abusing Microsoft Teams and Google Drive to Deploy a Java RAT

What did we find?In early April 2026, eSentire's Threat Response Unit (TRU) identified an intrusion targeting a…

READ NOW →

Threat Intelligence

5 M

What M-26-14 Means for Your Logging Strategy

Key Takeaways On May 22, 2026, the White House issued M-26-14, replacing the…

READ NOW →

Offensive Security

28 M

Amatera Stealer 4.0.2 Beta: What's New in This Variant

What did we find?In late April 2026, eSentire's Threat Response Unit (TRU) intercepted an attempted delivery of…

READ NOW →

TRU Positive/Bulletin

26 M

Tycoon 2FA Operators Adopt OAuth Device Code Phishing

What did we find?In late April 2026, the eSentire Threat Response Unit (TRU) analyzed a phishing campaign that…

READ NOW →

Threat Response Unit

3 M

Six Days Ahead: How eSentire Detected NetScaler Exploitation Before the Industry Caught Up

On April 2, 2026, eSentire’s Threat Response Unit (TRU) identified active exploitation attempts targeting Citrix…

READ NOW →

TRU Positive/Bulletin

33 M

Multi-Stage SEO Poisoning Campaign Targets Chinese-Speaking Developers with Kong RAT

What did we find?In March 2026, eSentire's Threat Response Unit detected a sophisticated multi-stage malware…

READ NOW →

Threat Intelligence

8 M

Examining the Blast Radius from the Axios npm Supply Chain Compromise

What Happened?eSentire's Security Advisory on this incident can be found here:…

READ NOW →

TRU Positive/Bulletin

9 M

Tycoon 2FA Infrastructure Update: Threat Actors Adapt Following Global Coalition Takedown

What did we find?Following the organized global coalition takedown of Tycoon 2FA phishing infrastructure led by…

READ NOW →
Page
of 20