Company

ABOUT ESENTIRE

eSentire is The Authority in Managed Detection and Response Services, protecting the critical data and applications of 2000+ organizations in 80+ countries from known and unknown cyber threats. Founded in 2001, the company’s mission is to hunt, investigate and stop cyber threats before they become business disrupting events.

About Us →

Leadership →

Careers →

Event Calendar →

Newsroom →

Aston Villa Football Club →

EVENT CALENDAR

Apr

ILTA Evolve

Apr

RSAC™ 2025 Conference

May

SIM Houston Women's Roundtable

May

Computing Cybersecurity Festival

May

CISO Strategy Virtual Meetings Seattle

View Calendar →

LATEST PRESS RELEASE

Mar 06, 2025

eSentire Unleashes AI-Driven Atlas Nexus Network, Empowering Cybersecurity Partners to Build Differentiated Security Services at Scale

View Newsroom →

OUR PARTNERSHIPS

Aston Villa Football Club

AVFC takes its cyber protection to the Next Level with eSentire as its official cybersecurity partner.

Learn More

Partners

PARTNER PROGRAM

We provide sophisticated cybersecurity solutions for Managed Security Service Providers (MSSPs), Managed Service Providers (MSPs), and Value-Added Resellers (VARs). Find out why you should partner with eSentire, the Authority in Managed Detection and Response, today.

LEARN MORE →

Apply to become an e3 ecosystem partner with eSentire today.

APPLY NOW →

Webinar

April 2025 TRU Intelligence Briefing On-Demand

Join eSentire’s Threat Response Unit (TRU) as they share new research-driven observations of malware, notable vulnerabilities, threat actor groups, and cyber activity affecting the threat landscape.

During the April Threat Intelligence Briefing, TRU reviewed:

Tycoon2FA: Insights on observations, detection coverage, and mitigation recommendations for the Tycoon2FA Phishing-as-a-Service kit.
What the PhaaS - A Look at Top AiTM Services Leveraged in Attacks: An overview of recent trends in a surge of AiTM attacks in 2025 as well as a discussion around capabilities of Tycoon2FA, Mamba2FA and Sneaky2FA including how they intercept and replay authentication data to compromise accounts. The TRU team will also provide some insight into infrastructure used by these services and their customers.
Threat Landscape: Malware recently observed by eSentire’s SOC (RansomHub, Koi Loader, Rhadamanthys Stealer) and notable vulnerabilities (CVE-2025-2825 CrushFTP, CVE-2025-24813 Apache, CVE-2025-29927 Next.js).
A brief geopolitical update on recent activity attributed to North Korean threat actors.

This webinar also included a live Q&A.

Please complete the form below to download the resource.

Watch the Webinar

During the April Threat Intelligence Briefing, TRU reviewed:

Tycoon2FA: Insights on observations, detection coverage, and mitigation recommendations for the Tycoon2FA Phishing-as-a-Service kit.
What the PhaaS - A Look at Top AiTM Services Leveraged in Attacks: An overview of recent trends in a surge of AiTM attacks in 2025 as well as a discussion around capabilities of Tycoon2FA, Mamba2FA and Sneaky2FA including how they intercept and replay authentication data to compromise accounts. The TRU team will also provide some insight into infrastructure used by these services and their customers.
Threat Landscape: Malware recently observed by eSentire’s SOC (RansomHub, Koi Loader, Rhadamanthys Stealer) and notable vulnerabilities (CVE-2025-2825 CrushFTP, CVE-2025-24813 Apache, CVE-2025-29927 Next.js).
A brief geopolitical update on recent activity attributed to North Korean threat actors.

This webinar also included a live Q&A.

ESENTIRE SERVICES

Managed Detection and Response

All-In-One MDR Solution →

MDR for Microsoft →

MDR for GenAI →

Digital Forensics and Incident Response

Continuous Threat Exposure Management (CTEM)

PLATFORM, PEOPLE AND RESPONSE

Security Operations Center (SOC)

Extended Detection and Response (XDR)

Technology Integrations

Threat Response Unit (TRU)

Cyber Resilience Team

Response and Remediation

MDR Packages and 24/7 Protection

MDR Pricing and Packages

Atlas Essentials

Atlas Advanced

Atlas Complete

24/7 Coverage

Endpoint

Network

Log

Cloud

Identity

INDUSTRIES

Insurance

Construction

Finance

Legal

Manufacturing

Private Equity

Healthcare

Retail

Food Supply

Government and Education

Automotive Dealerships

USE CASES

Ransomware

Cybersecurity Compliance

Zero Day Attacks

Cloud Misconfiguration

Third-Party Risk

Do More With Less

Cyber Risk

Cyber Insurance

Sensitive Data Security

Security Leadership

Cyber Threat Intelligence

From The Blog

The Long and Short(cut) of It: KoiLoader Analysis

From Access to Encryption: Dissecting Hunters International's Latest…

eSentire and Qylis Form Strategic Partnership to Deliver Compliant…

Resources

Case Studies

TRU Intelligence Center

Cybersecurity Tools

Videos

Reports

Webinars

Data Sheets

Real vs. Fake MDR

Compare MDR Vendors

Blogs

Security Advisories

SECURITY ADVISORIES

CrushFTP Authentication Bypass

Critical Next.js Vulnerability (CVE-2025-29927)