PRESS RELEASE. Boston, MA - January 24, 2023 - Black Kite, the leader in third-party cyber risk intelligence, today unveiled the industry's first monthly ransomware dashboard, featuring crucial insights for security teams, media, analysts, and other industry leaders.
The resource provides data, graphs, trends, and key insights from Black Kite's threat intelligence team about the top ransomware groups, their victims, and attack patterns.
Black Kite also analyzes the top ransomware indicators to identify common vulnerabilities exploited by active ransomware groups, and using data and machine learning, Black Kite's Ransomware Susceptibility Index paints a comprehensive picture of the industry-specific cyber-risks that organizations face each month.
In December alone, the research team monitored over 360 victims.
The most common indicators of compromise were MX and DNS misconfigurations that allowed for spoofing and phishing attacks and in-use services and products with vulnerabilities of high exploitability.
49% of victims had open RDP or SMB ports publicly visible.
Research also revealed that although LockBit continues to dominate the landscape, an emerging ransomware group, WereWolves, entered the top three for the first time.
LockBit has the biggest share in this set of victims with 21% of victims published by the group.
Exploiting vulnerabilities has become the most common method.
New groups, including WereWolves, While Play, 8base, and Akira, are putting themselves in the top ranks with an increasing number of victims.
The U.S. continues to be the most targeted country.
The manufacturing industry remained one of the top industries targeted and saw an increase in attacks in the second half of the year.
There was an increase in attacks on the healthcare and information industries.
As these groups become more sophisticated, it is imperative that companies understand their risk and are armed with the tools to make informed decisions about their security strategies.
Black Kite's monthly report dashboard provides critical visibility to help connect the dots between ransomware groups' patterns and their victims so that the bad actors are no longer operating in the shadows.
To see Black Kite's latest ransomware data, visit the December report landing page, or view data from the last six months on the Ransomware Reports page.
Black Kite gives companies a comprehensive, real-time view into cyber ecosystem risk so they can make informed risk decisions and improve business resilience while continuously monitoring more vendors, partners, and suppliers in an ever-changing digital landscape.
Through an automated process, and a combination of threat, business and risk information, Black Kite provides cyber risk intelligence that goes beyond a simple risk score or rating.
Black Kite serves more than 1,500 customers in a wide range of industries and has received numerous industry awards and recognition from customers.
All other brand names, product names, or trademarks belong to their respective holders.
This Cyber News was published on www.darkreading.com. Publication date: Fri, 26 Jan 2024 22:00:05 +0000