Black Kite Blog
Focus Friday: TPRM Insights on Cisco Asa, Ftd & Ios, Vmware Vcenter, Wd My Cloud, and Formbricks Vulnerabilities
TPRM analysis of Cisco ASA, FTD, IOS, VMware vCenter, WD My Cloud, and Formbricks CVEs. See which vendors are exposed and how to prioritize.
Oct 3, 2025When the Shai-hulud Worm Awakens: Tinycolor’s Fall and the New Era of Supply Chain Risk
The Shai-Hulud worm and the @ctrl/tinycolor npm compromise: inside the self-propagating supply chain attack reshaping software supply chain risk.
Sep 30, 2025Focus Friday: TPRM Insights on Goanywhere Mft, Solarwinds Web Help Desk, Cisco Snmp, and Dnn Software Vulnerabilities
TPRM analysis of GoAnywhere MFT, SolarWinds Web Help Desk, Cisco SNMP, and DNN Software CVEs. See which vendors are exposed and how to prioritize remediation.
Sep 26, 2025Focus Friday: TPRM Insights on Jetty, Jenkins, and CUPS Vulnerabilities
This Focus Friday explores vulnerabilities in Jetty, Jenkins, and CUPS, outlining third party risk implications and response considerations.
Sep 19, 2025Focus Friday: TPRM Insights on Sharepoint, Mssql, and Sap Netweaver Critical Vulnerabilities
Focus Friday analyzes critical vulnerabilities in Microsoft SharePoint, MSSQL, and SAP NetWeaver with implications for third party risk management.
Sep 12, 2025How to Tackle Third-party Vulnerabilities Without Breaking the Bank
How to tackle third-party vulnerabilities without breaking the bank: prioritize the CVEs that actually matter and save millions in remediation spend.
Sep 8, 2025Focus Friday: TPRM Actions for Django, Freepbx, and Hashicorp Vault Vulnerabilities
TPRM Insights vulnerabilities impact third-party risk. Black Kite’s FocusTags™ help prioritize exposure and streamline TPRM response.
Sep 5, 2025What the Salesloft Drift Incident Means for TPRM
Salesloft incident highlights the domino effect of third-party breaches. Learn what happened, how to protect your ecosystem from supply chain attacks.
Sep 4, 2025Focus Friday: TPRM Actions for Critical Citrix Netscaler and Salesforce Tableau Vulnerabilities
Focus Friday covers Citrix NetScaler and Salesforce Tableau vulnerabilities, highlighting third party risk exposure and recommended actions for security teams.
Aug 29, 2025Citrixdeelb: What the Latest Citrix Vulnerabilities Mean for TPRM
Citrix vulnerabilities in NetScaler ADC/Gateway are under active exploitation. What happened, what to patch now, and how to manage third-party risk.
Aug 27, 2025Focus Friday: TPRM Actions for Madeyoureset, Ivanti Connect Secure, Postgresql & Plesk Obsidian
This Focus Friday analyzes MadeYouReset activity and risks tied to Ivanti Connect Secure, PostgreSQL, Plesk, and Obsidian in third party ecosystems.
Aug 22, 2025Blacksuit (royal) Seized Under Operation Checkmate: No Arrests Mean a Comeback Is Imminent
Despite Operation Checkmate’s takedown of BlackSuit (Royal) infrastructure, the absence of arrests means the ransomware threat is far from over.
Aug 19, 2025