Black Kite Blog

Keyword Search

Microsoft Sharepoint Under Siege: CVE-2025-53770 Exploited Via Toolshell Rce Chain

Protect your data now from the critical SharePoint RCE vulnerability CVE-2025-53770 (ToolShell) exploitation.

Jul 22, 2025

AI Won’t Fix Your TPRM Mess (but Here’s What Might)

AI enhances Third-Party Risk Management, but it's not the full solution. Discover how to build a robust TPRM program with strong foundations.

Jul 16, 2025

blog

Focus Friday: TPRM Perspectives on Mssql, Redis, and Zimbra Vulnerabilities with Black Kite’s Focustags™

How MSSQL, Redis, and Zimbra vulnerabilities impact third-party risk. Black Kite’s FocusTags™ help prioritize exposure and streamline TPRM response.

Jul 11, 2025

blog

Black Kite Releases 2025 State of Financial Services: Hidden Dangers in the Vendor Ecosystem, Uncovering Critical Weaknesses That Pose Considerable Risks to Financial Institutions

Explore Black Kites 2025 report on hidden vendor risks in financial services, uncover critical weaknesses threatening financial institutions’ security

Jul 10, 2025

blog

Focus Friday: TPRM Insights on Critical Citrix Bleed 2 and Wing Ftp Server Vulnerabilities

Explore the Citrix Bleed 2 RCE and Wing FTP Server vulnerabilities from a TPRM perspective—guiding vendor assessments and targeted remediation.

Jul 3, 2025

blog

Focus Friday: TPRM Insights Into Mattermost Arbitrary File Write and Mongodb Denial-of-service Vulnerabilities

Dig into a critical arbitrary file write vulnerability in Mattermost and two DoS vulnerabilities in MongoDB Server from a TPRM perspective.

Jun 27, 2025

blog

The Bedrock of Effective TPRM? Quality Data

What distinguishes quality data in risk management, how to implement data quality control, and why Black Kite provides the most trustworthy data.

Jun 26, 2025

blog

AI in Ransomware: How Threat Actors Are (and Aren’t) Using AI

How ransomware groups are leveraging AI to carry out attacks today, what to expect next, and how to prepare your cyber ecosystem for these threats.

Jun 25, 2025

blog

Focus Friday: Grafana Vulnerability and Cisco Clamav Risks From a TPRM Perspective

Unpack the high-severity vulnerability in Grafana and multiple security flaws in Cisco’s ClamAV antivirus engine from a TPRM perspective.

Jun 20, 2025

blog

New-generation Ransomware Groups Are a Growing Threat

Emerging ransomware groups are using new, evolved tactics, including legitimate software, to bypass defenses. Learn how to protect your organization.

Jun 18, 2025

blog

Focus Friday: TPRM Insights Into Tridium Niagara and Elastic Kibana Vulnerabilities

Dive into critical Tridium Niagara and Elastic Kibana vulnerabilities from a TPRM perspective. Learn to assess vendor risk and mitigate proactively.

Jun 13, 2025

blog

Now’s the Time for Agile, Data-driven TPRM (and Our Latest Research Proves It)

Traditional TPRM fails against modern threats. New research reveals how to build an agile third-party risk management program for supply chain resilience.

Jun 4, 2025

Keyword Search

Black Kite Blog

Microsoft Sharepoint Under Siege: CVE-2025-53770 Exploited Via Toolshell Rce Chain

AI Won’t Fix Your TPRM Mess (but Here’s What Might)

Focus Friday: TPRM Perspectives on Mssql, Redis, and Zimbra Vulnerabilities with Black Kite’s Focustags™

Black Kite Releases 2025 State of Financial Services: Hidden Dangers in the Vendor Ecosystem, Uncovering Critical Weaknesses That Pose Considerable Risks to Financial Institutions

Focus Friday: TPRM Insights on Critical Citrix Bleed 2 and Wing Ftp Server Vulnerabilities

Focus Friday: TPRM Insights Into Mattermost Arbitrary File Write and Mongodb Denial-of-service Vulnerabilities

The Bedrock of Effective TPRM? Quality Data

AI in Ransomware: How Threat Actors Are (and Aren’t) Using AI

Focus Friday: Grafana Vulnerability and Cisco Clamav Risks From a TPRM Perspective

New-generation Ransomware Groups Are a Growing Threat

Focus Friday: TPRM Insights Into Tridium Niagara and Elastic Kibana Vulnerabilities

Now’s the Time for Agile, Data-driven TPRM (and Our Latest Research Proves It)

Ready to connect cyber risk intelligence to your entire risk program?

Microsoft Sharepoint Under Siege: CVE-2025-53770 Exploited Via Toolshell Rce Chain

AI Won’t Fix Your TPRM Mess (but Here’s What Might)

Focus Friday: TPRM Perspectives on Mssql, Redis, and Zimbra Vulnerabilities with Black Kite’s Focustags™

Black Kite Releases 2025 State of Financial Services: Hidden Dangers in the Vendor Ecosystem, Uncovering Critical Weaknesses That Pose Considerable Risks to Financial Institutions

Focus Friday: TPRM Insights on Critical Citrix Bleed 2 and Wing Ftp Server Vulnerabilities

Focus Friday: TPRM Insights Into Mattermost Arbitrary File Write and Mongodb Denial-of-service Vulnerabilities

The Bedrock of Effective TPRM? Quality Data

AI in Ransomware: How Threat Actors Are (and Aren’t) Using AI

Focus Friday: Grafana Vulnerability and Cisco Clamav Risks From a TPRM Perspective

New-generation Ransomware Groups Are a Growing Threat

Focus Friday: TPRM Insights Into Tridium Niagara and Elastic Kibana Vulnerabilities

Now’s the Time for Agile, Data-driven TPRM (and Our Latest Research Proves It)