While direct ransomware attacks on financial institutions have plummeted—from 191 in 2023 to just 55 by mid-2025—this apparent calm masks a critical and growing storm brewing within the sector’s extensive third-party vendor ecosystem. Among these vendors:
This report provides the hard data and expert analysis you need to understand the pervasive nature of vendor weaknesses and how to stop the cascading impact a single cyber event can have on your operations.
Black Kite delivers unmatched visibility into your third-party ecosystem through defendable cyber ratings, financial impact powered by Open FAIR™, likelihood of a ransomware attack in your cyber ecosystem, and platform to share asset-level intelligence directly with your vendors.
Our platform identifies emerging risks like critical CVEs and active cyber events that could be hiding deep in the vendor ecosystem, enabling financial organizations to stay ahead of cyber threats.
Black Kite closes the loop between risk identification and remediation with the ability to collaborate closely with vendors to resolve risks.
Go behind the scenes in the ransomware crime ecosystem and understand the most pressing ransomware risks for 2025.
Read the Report about 2025 Ransomware Report
Discover key findings on how third parties became the biggest cyber threat and learn strategies to strengthen your TPRM program.
Read the Report about 2025 Third-Party Breach Report
Learn how to narrow down the tens of thousands of CVEs to the handful that truly matter in your vendor ecosystem and how to apply risk hunting to TPRM.
Read the Report about 2025 Supply Chain Vulnerability Report