The IT Nerd

BlackFog, a leader in ransomware protection and anti data exfiltration technology, today announced two key appointments to its leadership team, welcoming Roger Cobb as Senior Vice President Sales and Jonathan Glass, as Vice President of Engineering.  

Cobb brings a wealth of industry experiences in consulting, sales, and security and will be leading the team in driving new business opportunities across North America. A graduate of Colorado State University, he joins BlackFog from HUMAN, where he was Senior Director, Anti Fraud. Prior to his time at HUMAN, he helped to build the channel processes at several IT and security startups including FishNet/Optive Security, Zscaler and Malwarebytes.  

A startup founder himself, Glass will be responsible for growing the engineering team and overseeing product development across different platforms including, desktop, mobile and cloud for BlackFog’s ADX (Anti Data Exfiltration) technology.  

Glass is an experienced developer and software architect and was most recently Senior Director of Engineering at ESO. He brings more than 15 years of experience in leading and growing large engineering teams with agile development processes and holds a Masters in Engineering from Cambridge University. 

BlackFog has today released the State of Ransomware for August 2023. Please feel free to use this report in any news stories, articles or other uses where it will best serve. Additionally, please see below for commentary from Dr. Darren Williams, CEO and Founder, BlackFog:

     “Traditionally a slower month, August this year broke new records and recorded the 2nd highest number of attacks on record with 59 publicly disclosed and 373 non-disclosed attacks. This represents a ratio of 632% between unreported and reported. As with last month the MOVEit exploit continues to generate victims, now totaling 365.

This month also saw some big moves in both the manufacturing and service sectors, with increases of 36% and 31% respectively. While technology, government and education continue to grow with increases of 26%, 23% and 21% respectively.

From a variant perspective, BlackCat and LockBit remain the two dominant variants, each accounting for 17.4% of victims, with Medusa and Play at 5.9% a piece. LockBit dominated in the number of unreported attacks at 35.4%, followed by CLOP at 14.1%.

Data exfiltration affected more than 90% of victims this month and continues to dominate as the primary mechanism for extorting organizations and individuals. China continues to dominate as the main destination for data exfiltration with 39%, with Russia at 9%.”

The State of Ransomware report for August 2023 can be found here: https://privacy.blackfog.com/wp-content/uploads/2023/09/BlackFogRansomwareReport-Aug-2023.pdf

BlackFog has today released their 2022 full Annual Ransomware Attack Report. Since 2020 BlackFog has measured publicly disclosed attacks globally. The 2022 ransomware attack report reflects on the key findings from 2022. They have also published a blog discussing the key lessons learned from ransomware in 2022 which expands on the general trends they see going forward. Reading this will give you an idea of what’s likely to come in 2023 based on the attacks of last year.

The full report can be found here: https://www.blackfog.com/wp-content/uploads/2023/01/2022_Ransomware_Report_v2.pdf

BlackFog has today released the December 2022 State of Ransomware Report. BlackFog issues a monthly report accounting for cyberattacks within the last month, showing targeted industries and the current active threat groups. 

Key findings for the month of December with perspectives below from Dr. Darren Williams, CEO and Founder, BlackFog:

• As we say goodbye to 2022, ransomware continued its assault in December with 35 new attacks, the highest in 3 years, and the 4th highest from a record-breaking year.
• From an industry perspective, Retail and Government saw the biggest increases of 15% and 13% respectively. The government, together with education and healthcare, were the top targets throughout the year, easily outstripping the closest, technology, by more than 30%. This reinforces the trend focusing on industries with the lowest levels of protection and skill shortages.
• This month we also saw a large increase in attacks using Hive and BlackCat variants with 17% and 16% increases respectively. LockBit, which ended the year as the most effective variant of 2022 ended at 15.7% of all successful attacks.
• Finally, we ended the year with 87% of all attacks leveraging PowerShell and 89% involving some form of data exfiltration, no surprise given the dramatic shift in attacks focusing almost entirely on data extortion.

Today’s full report can be found here: https://www.blackfog.com/wp-content/uploads/2023/01/BlackFogRansomwareReport-Dec-2022.pdf

Almost a third (32%) of CISOs or IT Security DMs in the UK and US are considering leaving their current organization, according to new research from BlackFog, released today. Of those considering leaving their current role, a third of those would do so within the next six months. These findings come as demand for cybersecurity talent intensifies, with reports of hard to fill vacancies and skills shortages across UK and US organizations.  

This research, which explored the frustrations and challenges faced by cybersecurity professionals also highlights the impact that cyber incidents have on turnover and job security. It revealed that of those who had been a CISO or IT security leader at a previous organization, two fifths (41%) either left, or were let go, due to an attack or data breach. 

When asked about the aspect of their role that they disliked most, 30% cited the lack of work life balance, with 27% stating that too much time was spent on firefighting rather than focusing on strategic issues.  

However, their role in keeping their organization safe from cyberthreats was clearly valued, with 44% of respondents stating that the most enjoyable aspect of the job is being the company ‘protector’ and having the ability to keep everyone working securely. 

The struggle to keep up with new cyber security approaches 

Escalating cybersecurity threats are driving new innovations to help organizations improve their cybersecurity posture, however, BlackFog’s findings show:

• More than half, 52%, admitted that they are struggling to keep up to date with new frameworks and models such as Zero Trust.  

• A further 20% felt that keeping the skill levels of their teams in line with these was a ‘serious challenge’. 

• 54% also felt that they weren’t able to keep up to date with information on the latest cybersecurity solutions such as anti data exfiltration. 

• 43% of respondents found it difficult to keep pace with the newest innovations in the cybersecurity market. This number varied by country, with 49% of US respondents agreeing versus 36% in the UK. 

Aligning with Board expectations

There were several key positives reflected in this study, especially in the realm of Board’s expectations for the respondents. BlackFog’s findings show that 3 out of 4 (75%) agree that there is a full alignment between the Board’s expectations of what they can achieve in their role and what they are equipped and able to deliver. In fact, two thirds (64%) of respondents were able to complete their priority tasks within the first six months of their starting date. This may be down to the fact that, on average, 27% of IT spending goes towards the security budget. 

BlackFog has today released the latest Monthly Global Ransomware Report. Each month, BlackFog continuously monitors and tracks the latest threats to enterprises, infrastructure and more. Key takeaways from this report include:

1. They saw a record number of reported attacks in June up from our previous high in February, a 10% total increase.
2. The most dramatic changes in June saw increases in the attacks on Education, Government and Manufacturing of 33%, 25% and 24% respectively. This reinforces our previous assessment that gangs are more focused on soft targets with a lack of cybersecurity investment and infrastructure.
3. Attack variants also saw some major changes this month with a renewed focus on Vice Society, BlackCat and Hive with increases of 50%, 30% and 30% respectively.
4. They also saw a large shift in data exfiltration in June with large increases in exfiltration to Russia and China which now represent 45% of all exfiltration globally.

Dr. Darren Williams, CEO and Founder of BlackFog had this commentary:

     “In June, we recorded 31 publicly disclosed ransomware attacks, the most we’ve seen this year so far. South Africa’s largest supermarket chain made news when they were hit by the RansomHouse criminal gang, and one of Brazil’s largest retail chains, Fast Shop was also hit. The BlackCat gang claimed an attack on the University of Pisa hitting them with a $4.5 million ransom, while Brooks County in Texas admitted to paying their ransom with taxpayer dollars.”

Today’s full report is available here.