Free TPRM Resources
Your source for primary cybersecurity research from the Black Kite Research Group, thought leadership content on topics that matter today, and more resources to sharpen your TPRM program.
Your source for primary cybersecurity research from the Black Kite Research Group, thought leadership content on topics that matter today, and more resources to sharpen your TPRM program.
Arbitrary scores and compliance over risk reduction give a false sense of security. Learn how to improve your TPRM program now.
Oct 1, 2025In September 2025, the popular npm package @ctrl/tinycolor became the epicenter of a self-propagating supply chain attack, now known as the Shai-Hulud campaign.
Sep 30, 2025Focus Friday highlights third party risks linked to GoAnywhere MFT, SolarWinds Web Help Desk, Cisco SNMP, and DNN software vulnerabilities.
Sep 26, 2025Learn how third party cyber risk management strengthens TPRM, reduces vendor exposure, and elevates cyber risk to a board-level business priority.
Sep 25, 2025This Focus Friday explores vulnerabilities in Jetty, Jenkins, and CUPS, outlining third party risk implications and response considerations.
Sep 19, 2025Focus Friday analyzes critical vulnerabilities in Microsoft SharePoint, MSSQL, and SAP NetWeaver with implications for third party risk management.
Sep 12, 2025Explore agentic AI protocols, use cases, and real-world applications, with insights on how they impact cybersecurity and risk management.
Sep 11, 2025Tackle third-party vulnerabilities without breaking the bank. Discover how to prioritize the risks that actually matter and save millions in remediation costs.
Sep 8, 2025TPRM Insights vulnerabilities impact third-party risk. Black Kite’s FocusTags™ help prioritize exposure and streamline TPRM response.
Sep 5, 2025Salesloft incident highlights the domino effect of third-party breaches. Learn what happened, how to protect your ecosystem from supply chain attacks.
Sep 4, 2025Focus Friday covers Citrix NetScaler and Salesforce Tableau vulnerabilities, highlighting third party risk exposure and recommended actions for security teams.
Aug 29, 2025Citrix vulnerabilities in NetScaler ADC/Gateway are under active exploitation. What happened, what to patch now, and how to manage third-party risk.
Aug 27, 2025Integrate risk intelligence into every part of your workflow so you can make more informed decisions with confidence.