Cyber risk and advisory programs that identify security gaps and build strategies to address them.
MDR that provides improved detection, 24/7 threat hunting, end-to-end coverage and most of all, complete Response.
Our team delivers the fastest response time in the industry. Threat suppression within just 4 hours of being engaged.
Be protected by the best from Day 1.
24/7 Threat Investigation and Response.
Expert hunting, research and content.
Defend brute force attacks, active intrusions and unauthorized scans.
Protect assets from ransomware, trojans, rootkits and more.
Intelligence and visibility across AWS, O365, DevOps and more.
Configuration escalations, policy and posture management.
Detects malicious insider behavior leveraging Machine Learning models.
On March 5th Google announced a zero-day vulnerability affecting the Google Chrome Browser . Google released a security update to address the issue on March 1st, but confirmed that the vulnerability was exploited in the wild prior to patch release. All major operating systems including Windows, MacOS, and Linux are affected. Available endpoint telemetry across eSentire customers indicates vulnerable versions of Chrome are still widely in use. It is highly recommended to update Chrome as soon as is feasible.
What are we doing about it
What you should do about it
CVE-2019-5786 was first discovered in late February by security researcher Clement Lecigne. The vulnerability resides in Google Chrome's FileReader API. When exploited a remote and unauthenticated threat actor could execute malicious code, which escapes from the in Chrome security sandbox and executes on the host machine.
Technical details on CVE-2019-5786 remain minimal at this time as Google will not release additional details until the majority of users have implemented the security patch.