Black Kite is a finalist in the 2026 SC Awards for continued innovation and leadership in third-party cyber risk intelligence.Learn more

Black Kite Blog

Keyword Search
blog

Two Crq Experts Walked Into a Webinar. Nobody's Heat Map Survived.

Jack Jones and Black Kite CSO Bob Maley on why color-coded risk reporting fails — and how CRQ gives boards language they actually trust.

May 5, 2026
blog

Focus Friday: TPRM Insights on Critical Vulnerabilities in Ollama, Langflow, Sonicwall Sonicos, and N8n

TPRM analysis of critical CVEs in Ollama, Langflow, SonicWall SonicOS, and n8n. See which vendors are exposed and how to prioritize the April surge.

May 1, 2026
blog

The Breach Already Happened. Your Vendor Just Hasn't Told You Yet.

The breach already happened. Your vendor just hasn't told you yet. Black Kite CSO Bob Maley on three moves CISOs should make to close the disclosure gap now.

Apr 28, 2026
blog

Focus Friday: TPRM Insights on Critical Vulnerabilities in Activemq, Zimbra, Exchange Server, Sharepoint, Mssql, Lodash, and Dolibarr

Expert analysis on critical vulnerabilities: April Supply Chain Surge, ActiveMQ, Zimbra, Exchange Server, SharePoint, MSSQL, Lodash, Dolibarr

Apr 24, 2026
blog

After Mythos: Are You Ready for the Vulnerability Deluge?

A perspective on Mythos from Dr. Ferhat Dikbiyik, Chief Research & Intelligence Officer at Black Kite

Apr 22, 2026
blog

Your Vendors' Problems Are Now Your Board's Problems: What the 2026 Third-party Breach Report Changes

2026 Third-Party Breach Report reveals a blast radius that doubled YoY, and new hidden threats. Here's how CISOs can translate into executive action.

Apr 21, 2026
blog

What Project Glasswing Means for Your Third-party Cyber Risk Program

Anthropic's Project Glasswing changed the TPCRM equation. Here's what autonomous AI vulnerability discovery means for TPCRM programs & how to handle

Apr 16, 2026
blog

Key Takeaways From the 2026 Third-party Breach Report: 200,000 Reasons to Rethink Your TPRM Strategy

New data from 200k vendors reveals third-party blast radius at its highest on record. Black Kite's chief researcher shares what TPCRM leaders must do.

Apr 15, 2026
blog

Focus Friday: TPRM Insights on the March Supply Chain Surge, F5 Big-ip, Truechaos, Cisco Imc, Perl, Grafana, N8n, Squid Proxy, and Harbor

Expert analysis on critical vulnerabilities: March Supply Chain Surge, F5 BIG-IP, TrueChaos, Cisco IMC, Perl, Grafana, n8n, Squid Proxy, Harbor.

Apr 3, 2026
blog

The End of Cyber Risk Ratings: Why Tpcrm Is the Future of Third-party Risk

Cyber Risk Ratings have limitations. Learn why TPCRM is the future of Third-Party Risk in modern TPRM programs

Apr 2, 2026
blog

Focus Friday: TPRM Insights on Critical Vulnerabilities in Mariadb, Jenkins, Roundcube, Zimbra, Langflow, and Jspdf

Expert TPRM analysis from Black Kite of critical vulnerabilities in MariaDB, Jenkins, Roundcube, Zimbra, Langflow, and jsPDF

Mar 27, 2026
blog

Paul Paget Named Mtlc Ceo of the Year

At the 2026 MTLC's annual awards, Black Kite CEO Paul Paget was named their CEO of the Year for a growth stage company

Mar 20, 2026

Ready to connect cyber risk intelligence to your entire risk program?

Integrate risk intelligence into every part of your workflow so you can make more informed decisions with confidence.