What We Do
How we do it
Sep 23, 2021
SolarMarker Malware Activity
THE THREAT eSentire has observed a recent and significant increase in SolarMarker infections delivered through drive-by download attacks. These attacks rely on social engineering techniques to persuade users to execute malware disguised as document templates. SolarMarker is a modular information-stealing malware; infections may result in the theft of sensitive data including user credentials.…
Read More
View all Advisories →
About Us
eSentire is The Authority in Managed Detection and Response Services, protecting the critical data and applications of 1000+ organizations in 70+ countries from known and unknown cyber threats. Founded in 2001, the company’s mission is to hunt, investigate and stop cyber threats before they become business disrupting events.
Read about how we got here
Leadership Work at eSentire
Aug 25, 2021
eSentire named a Leader in IDC MarketScape for U.S. Managed Detection and Response Services
August 26, 2021 – Waterloo, ON -  eSentire, recognized globally as the Authority in Managed Detection and Response (MDR), announced today that it has been named a Leader in the IDC MarketScape: U.S. Managed Detection and Response Services 2021 Vendor Assessment (doc #US48129921, August 2021). IDC defines the core services an MDR must provide as follows: reduced time for onboarding, 24/7…
Read More
Our award-winning partner program offers financial rewards, sales and marketing tools and personalized training. Accelerate your business and grow your revenue by offering our world-class Managed Detection and Response (MDR) services.
Learn about our Partner Program
Report — Jul 26, 2021

Dissecting Today's Ransomware Ecosystem

Ransomware-As-A-Service, Targeted Intrusions and Opportunistic Attacks

For years, ransomware has been a significant threat to organizations. But cybercrime as we know it has changed. What were once opportunistic attacks used to exploit individuals have turned into well-orchestrated attacks aimed at high-value organizations to cripple business operations and wreak chaos.

Even the threat actors behind ransomware attacks are far more sophisticated and savvy than the petty criminals they used to be. Their operations are organized, well-run, and even leverage role specialization to expand the reach and velocity of modern ransomware campaigns.

Since initial access to data exfiltration and deployment of ransomware can unfold in mere hours, CISOs need to re-evaluate their security program, posture, and controls against the backdrop of the heightened risk organizations face from today's threat actors. In addition, Security Operations teams need up-to-date threat detection capabilities and incident response playbooks to fully respond and remediate ransomware threats.

Read this report for insights on modern ransomware threats from eSentire’s Threat Response Unit (TRU) experts, including:

  • The emergence of Ransomware-as-a-Service
  • How criminals use ransomware to perform both opportunistic and targeted attacks against organizations
  • Case studies and observations on the most popular initial ransomware attack access techniques
  • Ransomware deployment techniques and extortion tactics 
  • Actionable takeaways that can be utilized to combat ransomware threats
Other Recommended Resources
September 2021 Threat Intelligence Observations
Data Sheet
Threat Response Unit: Advance Threat Analytics
Insights and Observations: U.K. Threat Intelligence Spotlight