Free TPRM Resources

Focus Friday: TPRM Insights on F5 Big-ip Apt Risk, Exchange Server, Sharepoint, Gladinet, and Flowise Vulnerabilities

Discover how F5 BIG-IP APT Risk Microsoft Exchange Server SharePoint Gladinet CentreStack TrioFox and Flowise Vulnerabilities.

Nightmare on F5 Street: Deconstructing the F5 Breach and Its Systemic Supply Chain Risk

The F5 source code breach is a massive supply chain risk. See the full TPRM analysis and immediate steps to protect your vendor ecosystem.

Focus Friday: TPRM Insights on Oracle Ebs, Jenkins, Redis, Draytek Vigor, Zimbra, Elastic, Django, Grafana, Sillytavern, and WP Yoast SEO

Discover how ORACLE EBS JENKINS REDIS DRAYTEK VIGOR ZIMBRA ELASTIC DJANGO GRAFANA SILLYTAVERN and WP YOAST SEO Vulnerabilities: TPRM Insights vulnerabilities im...

Dawn Foods - a Black Kite Story

We noticed a company that we worked with pretty closely on a regular basis - They had a critical vulnerability that was exposed to the internet.

Focus Friday: TPRM Insights on Cisco Asa, Ftd & Ios, Vmware Vcenter, Wd My Cloud, and Formbricks Vulnerabilities

Welcome to the October 3rd edition of Focus Friday, where we explore recent high-profile vulnerabilities through the lens of Third-Party Risk Management (TPRM)....

The Third-party Cyber Risk Problem No One Talks About

Arbitrary scores and compliance over risk reduction give a false sense of security. Learn how to improve your TPRM program now.

When the Shai-hulud Worm Awakens: Tinycolor’s Fall and the New Era of Supply Chain Risk

In September 2025, the popular npm package @ctrl/tinycolor became the epicenter of a self-propagating supply chain attack, now known as the Shai-Hulud campaign.

Focus Friday: TPRM Insights on Goanywhere Mft, Solarwinds Web Help Desk, Cisco Snmp, and Dnn Software Vulnerabilities

Welcome to the September 26th edition of Focus Friday, where we analyze some of the most pressing cybersecurity incidents from a Third-Party Risk Management (TP...

Third Party Cyber Risk Management Knowledge Center

Learn how third party cyber risk management (TPCRM) strengthens TPRM, reducing vendor cyber exposure and improving business resilience. Today, third party cyber...

Focus Friday: TPRM Insights on Jetty, Jenkins, and CUPS Vulnerabilities

Discover how Jetty - MadeYouReset, Jenkins, and CUPS Vulnerabilities: TPRM Insights vulnerabilities impact third-party risk. Black Kite’s FocusTags™ help priori...

Focus Friday: TPRM Insights on Sharepoint, Mssql, and Sap Netweaver Critical Vulnerabilities

Discover how Microsoft SharePoint MSSQL SAP NetWeaver Vulnerabilities: TPRM Insights vulnerabilities impact third-party risk. Black Kite’s FocusTags™ help prior...

Understanding Agentic AI & Protocols: Use Cases, Variants, and Real-world Fit