Black Kite Blog
Focus Friday: TPRM Insights Into Fortiweb, Solarwinds Serv-u, Oauth2 Proxy, Pgadmin, and W3 Total Cache Vulnerabilities
TPRM Insights Into FortiWeb, SolarWinds Serv-U, OAuth2 Proxy, pgAdmin, and W3 Total Cache Vulnerabilities from the Week of November 14, 2025.
Nov 21, 2025Ransomware Is Easy, and That's the Problem
Ransomware is booming as low-barrier RaaS fuels chaotic attacks and targets SMBs. Discover the new threat landscape and how to stay ahead in TPRM.
Nov 18, 2025What’s Next in Ransomware: How Threat Actors Will Weaponize AI
Discover the three ways AI will accelerate supply chain attacks, from real-time mapping to self-evolving malware.
Nov 17, 2025Focus Friday: TPRM Insights on Sharepoint, Mssql, Kibana, Django, and Open Webui
TPRM Insights on SharePoint, MSSQL, Kibana, Django, and Open WebUI Vulnerabilities from the Week of November 14, 2025.
Nov 14, 2025Is Your Vendors’ AI Putting You at Risk?
Your vendors are using AI, creating new risks faster than traditional TPRM can manage. Learn to adapt your vendor oversight with a new framework.
Nov 13, 2025Why Ransomware Groups Are Zeroing in on SMBs
Ransomware attacks now target SMBs for maximum supply chain disruption. Learn new tactics and how to secure your organization from third-party risks.
Nov 11, 2025Focus Friday: TPRM Insights on Moveit, Redis, Control Web Panel, Dnn Software, and Xwiki Vulnerabilities
TPRM Insights on MOVEit, Redis, Control Web Panel, DNN Software, and XWiki vulnerabilities from the week of November 3, 2025.
Nov 7, 2025Your Ransomware Fatigue Is Leaving the Back Door Open
Ransomware fatigue is real – but risky. Discover how third-party risks are leaving your organization exposed and what CISOs can do now.
Nov 6, 2025Your Ransomware Fatigue Is Leaving the Back Door Open
Ransomware fatigue is real – but risky. Discover how third-party risks are leaving your organization exposed and what CISOs can do now.
Nov 6, 2025Focus Friday: Critical Third-party Risks in Mikrotik Routeros, Apache Tomcat, Hashicorp Vault, and LiteSpeed Plugin
TPRM analysis of critical CVEs in MikroTik RouterOS, Apache Tomcat, HashiCorp Vault, and LiteSpeed Plugin. See which vendors are exposed and how to prioritize.
Oct 31, 2025Resource Roundup: Stop Drowning in CVEs & Prioritize Your Supply Chain Vulnerabilities
Discover the ultimate roundup of free resources on prioritizing third-party vulnerabilities. Stop drowning in CVEs and learn where to focus.
Oct 27, 2025Focus Friday: Third-party Risks in Samba Server, Atlassian Jira, Tp-link Omada, Minio, Squid Proxy, and Sauter Ey-modulo Vulnerabilities
This Focus Friday examines third party risks across Samba, Jira, TP Link Omada, MinIO, Squid Proxy, and other platforms affecting enterprise environments.
Oct 24, 2025