Meet us a Black Hat! Become a Black Kite Ranger to help protect the cyber ecosystem.Learn more
BlackKite: Home
Menu

Black Kite Blog

Keyword Search
blog

How to Implement Vulnerability Management in TPRM

Learn to operationalize vulnerability intelligence in TPRM. How to prioritize and act on the critical third-party vulnerabilities with insights.

May 22, 2025
blog

Focus Friday: TPRM Insights on Ivanti Epmm and Sap Netweaver Vulnerabilities – Ongoing Threat Actor/ransomware Groups Activity

Explore critical vulnerabilities Ivanti EPMM & SAP NetWeaver through a TPRM lens. Learn how to identify and manage vendor risks.

May 16, 2025
blog

Why Counting CVEs Misses the Real Third-party Risk

Counting CVEs for vendor risk is misleading. Why relevance, discoverability, and actionability are key to third-party vulnerability management.

May 15, 2025
blog

Black Kite Releases 2025 Ransomware Report, Revealing 123% Increase in Ransomware Attacks Over Two Years

Explore Black Kite’s 2025 ransomware report showing a 123% rise in attacks, growing supply-chain threats, and proactive defense insights.

May 13, 2025
blog

Focus Friday: TPRM Insights Into Sysaid, Activemq, Webmin, and Couchbase Server Vulnerabilities

Explore critical vulnerabilities in SysAid, ActiveMQ, Webmin, and Couchbase Server through a TPRM lens. Learn how to identify and manage vendor risks.

May 9, 2025
blog

Your Friendly Neighborhood Ransomware Syndicate Will See You Now

How LockBit ran ransomware like a business — and then got hacked themselves. Black Kite Research on what the syndicate's operations reveal about TPCRM.

May 8, 2025
blog

Focus Friday: TPRM Approach to Sap Netweaver Vcframework Rce and Apache Tomcat Http/2 Dos and Rewrite-rule Bypass

Learn TPRM implications of SAP NetWeaver RCE (CVE-2025-31324) and Apache Tomcat DoS/bypass (CVE-2025-31650/51) along with remediation guidance.

May 2, 2025
blog

Black Kite Unveils Vulnerability Intelligence Briefs to Provide Visibility Into Third-party Vulnerability Risks

Discover how Black Kite’s Vulnerability Intelligence Briefs offer visibility into third-party vulnerability risks and enhance security decision-making

Apr 29, 2025
blog

Focus Friday: TPRM Insights Into Fortinet Backdoors, Sonicwall Sslvpn, and Redis Dos Vulnerabilities

Understand the TPRM impact of the Fortinet backdoor, SonicWall SSLVPN DoS, and Redis DoS vulnerabilities. Actionable insights from a TPRM perspective.

Apr 25, 2025
blog

How to Prioritize Vulnerabilities in Your Supply Chain: a Proven Approach to Cut Through the Noise

Overwhelmed by CVEs? Learn a proven 3D approach to prioritize supply chain vulnerabilities beyond severity. Watch our video and read the report.

Apr 23, 2025
blog

Ey Us Unveils Paul Paget of Black Kite as an Entrepreneur of the Year® 2025 New England Award Finalist

Paul Paget, CEO of Black Kite, is named a finalist for EY US’s prestigious Entrepreneur of the Year 2025 New England award.

Apr 21, 2025
blog

Focus Friday: Third-party Risks From Adobe Coldfusion and Beego Xss Vulnerabilities

Understand the TPRM implications of Adobe ColdFusion and Beego XSS vulnerabilities. Get vendor questions and remediation steps. Read our analysis now!

Apr 18, 2025

Ready to connect cyber risk intelligence to your entire risk program?

Integrate risk intelligence into every part of your workflow so you can make more informed decisions with confidence.