← Customer 33366476

#36054 Partner Action Required: Agent Rollout Update

New Created Oct 9, 2025, 10:30 PM
System (internal) Oct 9, 2025, 10:30 PM 
Created from Lead: https://artichoke.shield.syncromsp.com/leads/35453734/convert
Check-in (internal) Oct 9, 2025, 10:30 PM 
Partner Action Required: Agent Rollout Update
Blackpoint Cyber has released important refinements to ransomware detection. Partner review and team communication required.

[embedded image]

Dear valued partner,

Last week we announced the release of an update to the Blackpoint agent, and we're following up with additional details as this release requires your and your clients' attention.

One of the updates enhances ransomware response, enabling both your teams and the Blackpoint SOC to act more effectively against potential attacks. We've implemented three key improvements designed to strengthen protection and streamline operations:

-  Enhanced ransomware detection: Updates to canary file behavior improve early-stage detection of ransomware activity.
-  Improved agent stability: Refinements ensure consistent operation across diverse environments and shared directories.
-  Expanded visibility: Canary files are now placed in both root and shared directories to support broader protection and more effective detection.

Note: The absence of Blackpoint’s name in the text of the canary files is intentional. This approach enables partners to fully white-label our services as part of their security packages, maintaining a consistent client experience under their own brand.

We took a pause on the agent roll out to make refinements designed to improve overall performance and operational effectiveness across client environments and therefore updated the agent build to 2.17.0.4. We will resume the update on October 16, 2025, and the update will take approximately three weeks to complete.

Why These Changes Matter

As ransomware tactics evolve, hidden files are increasingly ignored by attackers. By making canary files visible and optimizing their placement, we’ve strengthened their ability to serve as an early warning system for ransomware activity. This ensures faster detection and response by both your teams and the Blackpoint SOC.

Action Required

To ensure optimal protection and performance, please:

- Once the rollout is complete (around three weeks after October 16), please review your environment to confirm the latest update has been deployed successfully. You can also view this in the portal.
- Inform your teams and clients that visible canary files are intentional security tools and should not be modified or deleted. If removed, they will automatically repopulate.
- Evaluate shared folder usage to ensure compatibility with your clients’ backup, recovery, or file-scanning processes.
- Refer to the Canary File Knowledge Base ([Canary File KB)](https://czdmH04.na1.hubspotlinks.com/Ctc/RG+113/czdmH04/VVXj8n7PjGfyW7mXBSs4B3T6JV1-ywc5Ds6BDN2sc1yH5nXHCW8wM7ks6lZ3pNN1Wsjb0xJ_W7W60xLCD86dVlLW2bzkMT4WS8CHN2sHf2Tgy3NDW3jWT186cJGZvW55dxvm21yZ0lW1t_XHw1WMLSnW1BnJp-7q66xGW41rxg336cc6tVV0jfM9g208kW5hJGrB6-BWbXW6RBgj-8QcSC7W70w73z9dBRb7W3m2wwX25xwLwW9fNxQL9bK3vWV8cn-p5fW_XnN9fhdZ1-ySQ0W1vC_877Qy2RYV1zS0c5B67gBN2hGp4yDyDwdW2qG_xV77PvQtW2zVk5w2js65tN1M_9SBVxm36W1GvfQQ372qq_W69TtQw7QlWm_W4qb-hJ2r9QbZW345Sc916P_5DW1s_9d-7jt3xvW1DJpnZ5nFlxPW6Yx-4Y10Q-lgW3ZX85Y6b4D5fW6Jjv0g3R1CHjVkFG324lvs8RW703RdT2nh3XTN4_8KpgmFyGsW61DGYh6-Y_6-W2l7yTg2xTQ-XW2-zjQd2RWy5VW88h6Bp6yJ1lLW5hXz4N7_wBtDW3YdRd61Tl9GNW8dp831192M4yW5gkXy-2bKcjdW60YThg6M6MzKf2tYNlW04) for guidance on file visibility and configuration best practices.

If you experience any unexpected impact or have questions, we’re here to help. Please reach out to your dedicated Client Success Architect, or [email protected].

We will continue to keep you informed as future enhancements roll out. Thank you for your continued partnership and trust in Blackpoint Cyber.

The Blackpoint Cyber Team

[embedded image](https://czdmH04.na1.hubspotlinks.com/Ctc/RG+113/czdmH04/VVXj8n7PjGfyW7mXBSs4B3T6JV1-ywc5Ds6BDN2sc1y-3qn9qW95jsWP6lZ3m7W3Z-vP120K3SYVhvHGM3zVkv3W2_P_BH868NZrW69BYJT8p614-W4wQBQ120yqPlW3vm3ss96rryfW6hB4Fr7WpJv1W2KBJt5818d2cW3vT8mh7PFSYQW6zZdgc6ZTTgNW234GMX5b3DYHW4XsLRp4vqpqhW6xsfcH64j6xDW5RCMmc6bR-D2W8j4PXb5QvdmBV9SbxD5DCpJ7W5z3rWV1SFCrpVQk2DS21zn9rW3GMVm98mHrcpW7f8T8x8TnZ9TW9dcSGN6sFBFtW4-tzyw4MdlC6MpgQ8N1wnvkW1Ngndv5GRNK8N9cx0vc-vTjYW2BRNYv36sHrrN3pZvh4qm4KYW4D73FW6TxcXqN4WGKQLf0K0kW74bnZK6Y56Q2f4-GpkT04)	[Check us out on LinkedIn](https://czdmH04.na1.hubspotlinks.com/Ctc/RG+113/czdmH04/VVXj8n7PjGfyW7mXBSs4B3T6JV1-ywc5Ds6BDN2sc1y-3qn9qW95jsWP6lZ3lcW4gkW-j8-MK3_W2FQMLG5DBYP8N8V3zV1QjDfsW369kL62d_nrfVqRDMg2CbTV-N8dgphsPrT2rW96CvVV7yV93cW5g2mSS2v6XpBW8Sd0gf61d3xCW6vSPcH21yYkYW5rgSd85LysZxN2XLM-9ZK4bLN1v42CQrlcp8W8N45gY8xhJ9WV4n_d97G93c9N62KnXzFj1wZW6cHgt74DTmDmW8XNvKj4GKwVCW7jb8w916RXMDV_mc1K2q8RyZW6MKbdp4dnYxkW6kGPxF3mqBT0W7KXQJC68xPTZW4B39Q23xz-RJN2WnBGScCzVZW3FzGfS4WmBCWW7qdXDY3R_ZHXW6ZD-tx65NS_mW1GLxHZ2tg73xW1dXD9z4Kwf0Kf4F1fF804)

Blackpoint Cyber, 1099 18th Street, Suite 3050, Denver, Colorado 80202, United States

[Unsubscribe](https://hs-4759974.s.hubspotemail.net/hs/preferences-center/en/direct?data=W2nXS-N30h-SfW2Wnm604ckptjW2FYyc03bksH8W1Ljd_M4pkjBWW3P6dtF2PmLfLW3jcrys2D1hpLW1_32MD1Ssm2DW3bxjMF2xysSpW38lx-r4fKr_LW2-lhk-2CJkznW3ZNMkf49KpzKW2x-lHQ3NBYc0W2RCpTf2FBq8XW2vZf-x2Y9HY3W1LgXWc32JPz0W2sLVCX3-0L35W45Nr3f2HyXv9W1L7XYt219-t9W30lTvb3X_G23W3M1tCh2Kw_m3W1NDW2J2MRZshW3DYkNR3_rjXwW2TrYKl36F-nqW3R5gMs3QQqZvW3BYxdS3XPMGPW45MXzT1XmPT5W32DJk74plyXcW1XyjCN1LvFZyW1LgBF82xGfzwW4rFWtJ3gs7jrW1QyyWW2Tw8sCW3Zttrl2RTzr6W2zyMyT3f_8mNW3Y04Rv2MVR2VW2B13nw1V8m4sW3VWscK3ZNMRwW3bs6rF2TrYxFW1Sh_CK3H4PmWW3JT5SL4p8stwW43X04_3SLSsmW2KXDGS4th-1XW45VD133ZCCjCW2x-pwd4prtHjW2YdK2J3gs766W3Y1JMM1Bqt1xW3XWd-y3R1ZR8W2zW1kQ2HR26JW3646gs2TG3WGW2nYldk4hfFRDW23nGl72KzBt6W2xHDcR2r8Dj3W2RSfXl3yQByc0&utm_campaign=5642270-2025_Partner_Communications&utm_source=hs_email&utm_medium=email&utm_content=384524012&_hsenc=p2ANqtz-_8pV9UHQ4tZpbqtG9mFvPh5sWQq7Q1pxetwR9CXbUUI0Yz1BPJU7uWWLoyrKgmKFgKTd4BaB3YnuCdTEHdbPcVTuPCSxuvMfxbFDa1L9WBWQF1YHI&_hsmi=384524012) [Manage preferences](https://hs-4759974.s.hubspotemail.net/hs/preferences-center/en/page?data=W2nXS-N30h-SfW2Wnm604ckptjW2FYyc03bksH8W1Ljd_M4pkjBWW3P6dtF2PmLfLW3jcrys2D1hpLW1_32MD1Ssm2DW3bxjMF2xysSpW38lx-r4fKr_LW2-lhk-2CJkznW3ZNMkf49KpzKW2x-lHQ3NBYc0W2RCpTf2FBq8XW2vZf-x2Y9HY3W1LgXWc32JPz0W2sLVCX3-0L35W45Nr3f2HyXv9W1L7XYt219-t9W30lTvb3X_G23W3M1tCh2Kw_m3W1NDW2J2MRZshW3DYkNR3_rjXwW2TrYKl36F-nqW3R5gMs3QQqZvW3BYxdS3XPMGPW45MXzT1XmPT5W32DJk74plyXcW1XyjCN1LvFZyW1LgBF82xGfzwW4rFWtJ3gs7jrW1QyyWW2Tw8sCW3Zttrl2RTzr6W2zyMyT3f_8mNW3Y04Rv2MVR2VW2B13nw1V8m4sW3VWscK3ZNMRwW3bs6rF2TrYxFW1Sh_CK3H4PmWW3JT5SL4p8stwW43X04_3SLSsmW2KXDGS4th-1XW45VD133ZCCjCW2x-pwd4prtHjW2YdK2J3gs766W3Y1JMM1Bqt1xW3XWd-y3R1ZR8W2zW1kQ2HR26JW3646gs2TG3WGW2nYldk4hfFRDW23nGl72KzBt6W2xHDcR2r8Dj3W2RSfXl3yQByc0&utm_campaign=5642270-2025_Partner_Communications&utm_source=hs_email&utm_medium=email&utm_content=384524012&_hsenc=p2ANqtz-_8pV9UHQ4tZpbqtG9mFvPh5sWQq7Q1pxetwR9CXbUUI0Yz1BPJU7uWWLoyrKgmKFgKTd4BaB3YnuCdTEHdbPcVTuPCSxuvMfxbFDa1L9WBWQF1YHI&_hsmi=384524012)
[embedded image]