Black Kite Blog

July 2024

Focus Friday: Lessons from the CrowdStrike Update Outage on Global IT Resilience

Written By: Ferhat Dikbiyik Welcome to this week’s Focus Friday, where we examine significant events affecting supply chains and third-party risk management. Today, we highlight the recent CrowdStrike update outage, which disrupted businesses globally. On July 19, 2024,...

July 2024

FOCUS FRIDAY: TPRM INSIGHTS ON SERV-U FTP, MICROSOFT SHAREPOINT, CITRIX NETSCALER, SERVICENOW, EXIM MAIL, AND GEOSERVER INCIDENTS WITH BLACK KITE’S FOCUSTAGS™

Written By: Ferdi GulContributor: Ferhat Dikbiyik Welcome to this week's Focus Friday blog, where we delve into some of the most pressing vulnerabilities affecting various critical systems from a Third-Party Risk Management (TPRM) perspective. This week, we spotlight...

July 2024

No Hidden Costs: How Black Kite Redefines TPRM Solution Pricing

Written by: Bob Maley, Chief Security Officer and Johnathan Bald, VP Sales Recently, in The Forrester Wave™: Cybersecurity Risk Ratings Platforms for Q2 2024, Black Kite earned a perfect score of 5 in “pricing flexibility and transparency.” By...

July 2024

Understand DORA In 4 Questions and How To Automate Vendor Compliance With AI

Written By: Gizem ToprakContributor: Müzeyyen Gökçen Tapkan 1. What Is the Digital Operational Resilience Act (DORA)? Digital Operational Resilience Act (DORA) is a European Union (EU) regulation that aims to improve the cybersecurity and operational resilience of financial...

July 2024

FOCUS FRIDAY: TPRM INSIGHTS ON POLYFILL SUPPLY CHAIN ATTACK AND MOVEit, CISCO NX-OS, OPENSSH, APACHE TOMCAT, PROGRESS’ WHATSUP GOLD, AND MICROSOFT MSHTML VULNERABILITIES

Written By: Ferdi GulContributor: Ferhat Dikbiyik Welcome to this week's Focus Friday blog, where we delve into critical vulnerabilities impacting today's digital landscape from a Third-Party Risk Management (TPRM) perspective. In this edition, we explore significant threats associated...

FOCUS FRIDAY: TPRM Insights on Ivanti EPMM and SAP NetWeaver Vulnerabilities – Ongoing Threat Actor/Ransomware Groups Activity

May 15, 2025

Black Kite Blog

Focus Friday: Lessons from the CrowdStrike Update Outage on Global IT Resilience

FOCUS FRIDAY: TPRM INSIGHTS ON SERV-U FTP, MICROSOFT SHAREPOINT, CITRIX NETSCALER, SERVICENOW, EXIM MAIL, AND GEOSERVER INCIDENTS WITH BLACK KITE’S FOCUSTAGS™

No Hidden Costs: How Black Kite Redefines TPRM Solution Pricing

Understand DORA In 4 Questions and How To Automate Vendor Compliance With AI

FOCUS FRIDAY: TPRM INSIGHTS ON POLYFILL SUPPLY CHAIN ATTACK AND MOVEit, CISCO NX-OS, OPENSSH, APACHE TOMCAT, PROGRESS’ WHATSUP GOLD, AND MICROSOFT MSHTML VULNERABILITIES

Categories

FOCUS FRIDAY: TPRM Insights on Ivanti EPMM and SAP NetWeaver Vulnerabilities – Ongoing Threat Actor/Ransomware Groups Activity

Why Counting CVEs Misses the Real Third-Party Risk

Focus Friday: TPRM Insights Into SysAid, ActiveMQ, Webmin, and Couchbase Server Vulnerabilities

Your Friendly Neighborhood Ransomware Syndicate Will See You Now

Focus Friday: TPRM Approach to SAP NetWeaver VCFRAMEWORK RCE and Apache Tomcat HTTP/2 DoS and Rewrite-Rule Bypass

Focus Friday: TPRM Insights Into Fortinet Backdoors, SonicWall SSLVPN, and Redis DoS Vulnerabilities

How to Prioritize Vulnerabilities in Your Supply Chain: A Proven Approach to Cut Through the Noise

FOCUS FRIDAY: THIRD-PARTY RISKS FROM ADOBE COLDFUSION AND BEEGO XSS VULNERABILITIES

Focus Friday: TPRM Perspectives On Ivanti Connect Secure, FortiSwitch, and MinIO Vulnerabilities

Why You Want Human Experts Behind Your TPRM Data: Black Kite Research & Intelligence Team (BRITE)

Infographic: Takeaways from the 8 Most Noteworthy Cyber Incidents of 2024

Infographic: Key Stats from the 2025 Third-Party Breach Report

Focus Friday: TPRM Implications of Kubernetes Ingress NGINX, Synology DSM, and Synapse Server Vulnerabilities

Oracle Cloud Breach: Claims, Denials, and the Reality of Cloud Security Risks in TPRM

Focus Friday: Fortifying TPRM Against Kernel Compromise, Buffer Overflow, and Directory Traversal Vulnerabilities