Black Kite Blog
Third Party Podcast Recap: Cybersecurity Metrics Boards Actually Care About
Your board is ignoring your cyber report. Learn 3 metrics execs actually care about: loss exposure, concentration risk, and financial impact.
Oct 22, 2025How to Avoid Ransomware: a Ciso’s Guide to Outsmarting Attackers
Ransomware attacks through vendor supply chains are rising. Learn 6 agile, attacker-focused tactics CISOs must use to prioritize risk and outsmart threats.
Oct 20, 2025Focus Friday: TPRM Insights on F5 Big-ip Apt Risk, Exchange Server, Sharepoint, Gladinet, and Flowise Vulnerabilities
Discover how F5 BIG-IP APT Risk Microsoft Exchange Server SharePoint Gladinet CentreStack TrioFox and Flowise Vulnerabilities.
Oct 17, 2025Nightmare on F5 Street: Deconstructing the F5 Breach and Its Systemic Supply Chain Risk
The F5 source code breach is a massive supply chain risk. See the full TPRM analysis and immediate steps to protect your vendor ecosystem.
Oct 16, 2025Focus Friday: TPRM Insights on Oracle Ebs, Jenkins, Redis, Draytek Vigor, Zimbra, Elastic, Django, Grafana, Sillytavern, and WP Yoast SEO
Discover how ORACLE EBS JENKINS REDIS DRAYTEK VIGOR ZIMBRA ELASTIC DJANGO GRAFANA SILLYTAVERN and WP YOAST SEO Vulnerabilities: TPRM Insights vulnerabilities im...
Oct 10, 2025Focus Friday: TPRM Insights on Cisco Asa, Ftd & Ios, Vmware Vcenter, Wd My Cloud, and Formbricks Vulnerabilities
TPRM analysis of Cisco ASA, FTD, IOS, VMware vCenter, WD My Cloud, and Formbricks CVEs. See which vendors are exposed and how to prioritize.
Oct 3, 2025When the Shai-hulud Worm Awakens: Tinycolor’s Fall and the New Era of Supply Chain Risk
The Shai-Hulud worm and the @ctrl/tinycolor npm compromise: inside the self-propagating supply chain attack reshaping software supply chain risk.
Sep 30, 2025Focus Friday: TPRM Insights on Goanywhere Mft, Solarwinds Web Help Desk, Cisco Snmp, and Dnn Software Vulnerabilities
TPRM analysis of GoAnywhere MFT, SolarWinds Web Help Desk, Cisco SNMP, and DNN Software CVEs. See which vendors are exposed and how to prioritize remediation.
Sep 26, 2025Focus Friday: TPRM Insights on Jetty, Jenkins, and CUPS Vulnerabilities
This Focus Friday explores vulnerabilities in Jetty, Jenkins, and CUPS, outlining third party risk implications and response considerations.
Sep 19, 2025Focus Friday: TPRM Insights on Sharepoint, Mssql, and Sap Netweaver Critical Vulnerabilities
Focus Friday analyzes critical vulnerabilities in Microsoft SharePoint, MSSQL, and SAP NetWeaver with implications for third party risk management.
Sep 12, 2025How to Tackle Third-party Vulnerabilities Without Breaking the Bank
How to tackle third-party vulnerabilities without breaking the bank: prioritize the CVEs that actually matter and save millions in remediation spend.
Sep 8, 2025Focus Friday: TPRM Actions for Django, Freepbx, and Hashicorp Vault Vulnerabilities
TPRM Insights vulnerabilities impact third-party risk. Black Kite’s FocusTags™ help prioritize exposure and streamline TPRM response.
Sep 5, 2025