New: Black Kite Global Adaptive AI Assessment Framework (BK-GA³™), a truly global framework for assessing AI riskGet It Now

Free TPRM Resources

Your source for primary cybersecurity research from the Black Kite Research Group, thought leadership content on topics that matter today, and more resources to sharpen your TPRM program.

Keyword Search
Filter

RESOURCE TYPE

report

Navigating the Moveit Transfer Cybersecurity Storm: a Third-party Risk Perspective

The MOVEit SWL injection vulnerability CVE-2023-34362 puts thousands at risk. Explore the potential impact and what you can do.

Jun 5, 2023
Navigating the MOVEit Transfer Cybersecurity Storm: A Third-Party Risk Perspective
report

Uber's Third Data Breach: What You Need to Know

Ride-sharing Uber is once again the target of a major data breach marking the third cyber incident they’ve experienced overall. Let’s break down the attack.

May 25, 2023
Uber's Third Data Breach: What You Need to Know
report

Malaslocker Ransomware: Exploiting Zimbra Servers for Charity and Its Global Impact

MalasLocker ransomware targets thousands of Zimbra Server vulnerabilities – and ransom demands are ‘approved charitable donations’. Dive into our analysis.

May 25, 2023
MalasLocker Ransomware: Exploiting Zimbra Servers for Charity and its Global Impact
report

The Ultimate Guide to Building a Third-party Risk Program

Get a practical crash course on third-party risk management with this step-by-step guide.

Apr 4, 2023
The Ultimate Guide to Building a Third-Party Risk Program
report

How Do You Breach a Company as Big as Spacex? Explore Lockbit’s Latest Third-party Attack

Lockbit ransomware group claims that they breached a SpaceX contractor, seizing 3,000 drawings certified by SpaceX engineers to hold for ransom.

Mar 30, 2023
How do you breach a company as big as SpaceX? Explore LockBit’s latest third-party attack
report

Clop Ransomware Group Strikes Hundreds of Companies, Raising Concerns for Cascading Breaches

Clop ransomware group targets companies with unpatched vulnerabilities in GoAnywhere MFT servers in their latest mass-ransomware attack across the globe.

Mar 30, 2023
Clop Ransomware Group Strikes Hundreds of Companies, Raising Concerns for Cascading Breaches
report

3cx Supply Chain Attack: the Risks and How to Protect Yourself

Massive supply chain attack ‘Smooth Operator,’ poses unprecedented security risks for businesses and the third-party vendors associated.

Mar 30, 2023
3CX Supply Chain Attack: The Risks and How to Protect Yourself
report

How Concerned Should Organizations Be on the Vmware Esxiargs Threats?

Written by Ferhat Dikbiyik Additional Contributor Ekrem Celik Edited by Haley Williams Over 2,000 servers worldwide were suddenly affected with ransomware due t...

Feb 8, 2023
How Concerned Should Organizations Be on the VMWare ESXIArgs Threats?
report

2023 Third Party Data Breach Report

Download the 2023 Black Kite Third Party Data Breach Report to discover trends, shifts, and lessons learned from 2022.

Jan 31, 2023
2023 Third Party Data Breach Report
report

The World Cup Finals Are Here

World Cup team sponsors are just as susceptible to third party risk - Black Kite Research has the latest

Dec 14, 2022
The World Cup Finals Are Here
report

Cuba Ransomware Targets Critical Infrastructure – Warranting Fbi and Cisa Warning

Over the last calendar year, Cuba ransomware groups have targeted key critical infrastructure across the United States and the globe – how can you prepare?

Dec 8, 2022
Cuba Ransomware Targets Critical Infrastructure – Warranting FBI and CISA Warning
report

Facebook + Meta Pixel Data Privacy Risk on Vendors

Written by Ferhat Dikbiyik Additional Contributor Ekrem Celik Edited by Haley Williams The risk of data breaches and data privacy issues related to Facebook/Met...

Nov 22, 2022
Facebook + Meta Pixel Data Privacy Risk on Vendors