Cyber risk and advisory programs that identify security gaps and build strategies to address them.
MDR that provides improved detection, 24/7 threat hunting, end-to-end coverage and most of all, complete Response.
Our team delivers the fastest response time in the industry. Threat suppression within just 4 hours of being engaged.
Be protected by the best from Day 1.
24/7 Threat Investigation and Response.
Expert hunting, research and content.
Defend brute force attacks, active intrusions and unauthorized scans.
Safeguard endpoints 24/7 by isolating and remediating threats to prevent lateral spread.
Investigation and enhanced threat detection across multi-cloud or hybrid environments.
Configuration escalations, policy and posture management.
Detects malicious insider behavior leveraging Machine Learning models.
Join us for a live security brefing with (ISC)2 members.
Join Tim Segato, Director, Product Management and Ryan Westman, Manager,…
Ask questions and hear from Cybersecurity experts from eSentire,…
eSentire has observed active exploitation of the critical Zoho ManageEngine ServiceDesk Plus vulnerability CVE-2021-44077 (CVSS: 9.8). The vulnerability is classified as Remote Code Execution (RCE) and allows a remote and unauthenticated threat actor to upload executable files and deploy web shells on compromised assets.
Organizations making use of Zoho products are strongly recommended to ensure relevant security patches are deployed and run the available exploitation detection tool, provided by Zoho ManageEngine, to identify potential signs of compromise.
eSentire discovered malicious activity while deploying detection for exploitation of CVE-2021-44077 and associated threats. CISA and the FBI have warned that Advanced Persistent Threat groups are actively exploiting CVE-2021-44077. Exploitation of this vulnerability may indicate that a wider intrusion has occurred, including the compromise of administrator credentials, lateral movements, and data exfiltration.