Black Kite Blog
Focus Friday: TPRM Perspectives on Ivanti Connect Secure, Fortiswitch, and Minio Vulnerabilities
Understand the TPRM implications of Ivanti, FortiSwitch, and MinIO vulnerabilities. Get vendor questions and remediation steps. Read our analysis now!
Apr 11, 2025Why You Want Human Experts Behind Your TPRM Data: Black Kite Research & Intelligence Team (brite)
Human experts unlock the true value of your TPRM data, turning it into actionable intelligence. How expert analysis improves cyber risk management.
Apr 10, 2025Black Kite Research Reveals Traditional Approaches to Vulnerability Management Fall Short in Third-party Risk Management (TPRM)
New research from Black Kite shows traditional vulnerability management falls short for third-party risk — and what to do next.
Apr 8, 2025Infographic: Takeaways From the 8 Most Noteworthy Cyber Incidents of 2024
Infographic: takeaways from 2024's 8 most consequential cyber incidents and how each one disrupted third-party ecosystems. From Black Kite Research.
Apr 2, 2025Infographic: Key Stats From the 2025 Third-party Breach Report
Get the essential numbers from the 2025 Third-Party Breach Report. See the biggest trends, attack methods, and impacts in one infographic.
Mar 31, 2025Focus Friday: TPRM Implications of Kubernetes Ingress Nginx, Synology Dsm, and Synapse Server Vulnerabilities
Explore critical vulnerabilities in Kubernetes, Synology, and Synapse. Learn TPRM implications and how to streamline risk management with vendors.
Mar 28, 2025Oracle Cloud Breach: Claims, Denials, and the Reality of Cloud Security Risks in TPRM
Claims of an Oracle Cloud breach conflict with official denials. Explore the cloud security risks and leaked data with analysis on the TPRM impact.
Mar 27, 2025Focus Friday: Fortifying TPRM Against Kernel Compromise, Buffer Overflow, and Directory Traversal Vulnerabilities
Strengthen TPRM against kernel, buffer overflow, and directory traversal vulnerabilities in Juniper, MongoDB, and SAP with targeted insights.
Mar 21, 2025Focus Friday: Third-party Risks in Draytek Vigor Routers, Vmware Esxi, Apache Tomcat, and Axios Http Client Vulnerabilities
Explore key vulnerabilities in DrayTek routers, VMware ESXi, Apache Tomcat, and Axios HTTP Client from a TPRM perspective.
Mar 14, 2025Ransomware Review February 2025: Clop’s Cleo Attack Pushes Victim Count to Historic High
Learn about February’s ransomware activity: a record 809 victims, Clop's CLEO attack peaks, 8Base shutdown, and essential defense insights.
Mar 7, 20253rd Party Risk Management
Many organizations have been talking about the 3rd party risk management for years and it is becoming more complex every day.
Mar 6, 2025Top 3 Actions to Take After Reading the 2025 Third-party Breach Report
From a CSO to CISOs: How to improve your third-party risk strategy, reduce risk exposure, and apply insights from the 2025 Third-Party Breach Report.
Mar 3, 2025