Black Kite has launched the industry’s first monthly ransomware dashboard [1] [2] [3] [4], offering valuable insights for security teams [1] [3], media [3], analysts [3], and industry leaders [1] [2] [3] [4]. This dashboard provides data [1] [2] [3] [4], graphs [1] [2] [3] [4], trends [1] [2] [3] [4], and key insights from Black Kite’s threat intelligence team on top ransomware groups [1] [3] [4], their victims [1] [2] [3], and attack patterns [1] [2] [3] [4]. It also analyzes ransomware indicators to identify common vulnerabilities exploited by active ransomware groups [1] [3]. Using data and machine learning [1] [3], Black Kite’s Ransomware Susceptibility Index (RSI) offers a comprehensive view of industry-specific cyber risks organizations face each month [3].


In December [1] [2], our research team monitored over 360 victims and identified the most common indicators of compromise [1] [2], including MX and DNS misconfigurations [1] [2], vulnerabilities in in-use services and products [1] [2], and publicly visible RDP or SMB ports [1]. While LockBit remains dominant [1], a new ransomware group called WereWolves entered the top three for the first time [1] [2]. The dashboard also highlights trends over the past six months [2], emphasizing the need for smarter security strategies to prevent attacks [2]. For example, LockBit is the top ransomware group [4], and there has been an increase in attacks on the manufacturing, healthcare [4], and information industries [4]. The United States is the most targeted country.


Black Kite’s monthly report dashboard aims to provide critical visibility and help companies make informed decisions about their security strategies [2]. By revealing trends and highlighting vulnerabilities, organizations can better understand the cyber risks they face and take appropriate measures to mitigate them. The insights provided by the dashboard emphasize the importance of implementing smarter security strategies to prevent attacks. As ransomware groups evolve and new threats emerge, it is crucial for organizations to stay vigilant and adapt their security measures accordingly.