Black Kite is a finalist in the 2026 SC Awards for continued innovation and leadership in third-party cyber risk intelligence.Learn more

Black Kite Blog

Keyword Search
blog

Why Counting CVEs Misses the Real Third-party Risk

Counting CVEs for vendor risk is misleading. Why relevance, discoverability, and actionability are key to third-party vulnerability management.

May 15, 2025
blog

Black Kite Releases 2025 Ransomware Report, Revealing 123% Increase in Ransomware Attacks Over Two Years

Explore Black Kite’s 2025 ransomware report showing a 123% rise in attacks, growing supply-chain threats, and proactive defense insights.

May 13, 2025
blog

Focus Friday: TPRM Insights Into Sysaid, Activemq, Webmin, and Couchbase Server Vulnerabilities

Explore critical vulnerabilities in SysAid, ActiveMQ, Webmin, and Couchbase Server through a TPRM lens. Learn how to identify and manage vendor risks.

May 9, 2025
blog

Your Friendly Neighborhood Ransomware Syndicate Will See You Now

How LockBit ran ransomware like a business — and then got hacked themselves. Black Kite Research on what the syndicate's operations reveal about TPCRM.

May 8, 2025
blog

Focus Friday: TPRM Approach to Sap Netweaver Vcframework Rce and Apache Tomcat Http/2 Dos and Rewrite-rule Bypass

Learn TPRM implications of SAP NetWeaver RCE (CVE-2025-31324) and Apache Tomcat DoS/bypass (CVE-2025-31650/51) along with remediation guidance.

May 2, 2025
blog

Black Kite Unveils Vulnerability Intelligence Briefs to Provide Visibility Into Third-party Vulnerability Risks

Discover how Black Kite’s Vulnerability Intelligence Briefs offer visibility into third-party vulnerability risks and enhance security decision-making

Apr 29, 2025
blog

Focus Friday: TPRM Insights Into Fortinet Backdoors, Sonicwall Sslvpn, and Redis Dos Vulnerabilities

Understand the TPRM impact of the Fortinet backdoor, SonicWall SSLVPN DoS, and Redis DoS vulnerabilities. Actionable insights from a TPRM perspective.

Apr 25, 2025
blog

How to Prioritize Vulnerabilities in Your Supply Chain: a Proven Approach to Cut Through the Noise

Overwhelmed by CVEs? Learn a proven 3D approach to prioritize supply chain vulnerabilities beyond severity. Watch our video and read the report.

Apr 23, 2025
blog

Ey Us Unveils Paul Paget of Black Kite as an Entrepreneur of the Year® 2025 New England Award Finalist

Paul Paget, CEO of Black Kite, is named a finalist for EY US’s prestigious Entrepreneur of the Year 2025 New England award.

Apr 21, 2025
blog

Focus Friday: Third-party Risks From Adobe Coldfusion and Beego Xss Vulnerabilities

Understand the TPRM implications of Adobe ColdFusion and Beego XSS vulnerabilities. Get vendor questions and remediation steps. Read our analysis now!

Apr 18, 2025
blog

Focus Friday: TPRM Perspectives on Ivanti Connect Secure, Fortiswitch, and Minio Vulnerabilities

Understand the TPRM implications of Ivanti, FortiSwitch, and MinIO vulnerabilities. Get vendor questions and remediation steps. Read our analysis now!

Apr 11, 2025
blog

Why You Want Human Experts Behind Your TPRM Data: Black Kite Research & Intelligence Team (brite)

Human experts unlock the true value of your TPRM data, turning it into actionable intelligence. How expert analysis improves cyber risk management.

Apr 10, 2025

Ready to connect cyber risk intelligence to your entire risk program?

Integrate risk intelligence into every part of your workflow so you can make more informed decisions with confidence.