Free TPRM Resources
Your source for primary cybersecurity research from the Black Kite Research Group, thought leadership content on topics that matter today, and more resources to sharpen your TPRM program.
Black Kite Releases 2025 State of Financial Services: Hidden Dangers in the Vendor Ecosystem, Uncovering Critical Weaknesses That Pose Considerable Risks to Financial Institutions
Explore Black Kites 2025 report on hidden vendor risks in financial services, uncover critical weaknesses threatening financial institutions’ security
Jul 10, 2025
Focus Friday: TPRM Insights on Critical Citrix Bleed 2 and Wing Ftp Server Vulnerabilities
Explore the Citrix Bleed 2 RCE and Wing FTP Server vulnerabilities from a TPRM perspective—guiding vendor assessments and targeted remediation.
Jul 3, 2025
Focus Friday: TPRM Insights Into Mattermost Arbitrary File Write and Mongodb Denial-of-service Vulnerabilities
Dig into a critical arbitrary file write vulnerability in Mattermost and two DoS vulnerabilities in MongoDB Server from a TPRM perspective.
Jun 27, 2025The Bedrock of Effective TPRM? Quality Data
What distinguishes quality data in risk management, how to implement data quality control, and why Black Kite provides the most trustworthy data.
Jun 26, 2025
AI in Ransomware: How Threat Actors Are (and Aren’t) Using AI
How ransomware groups are leveraging AI to carry out attacks today, what to expect next, and how to prepare your cyber ecosystem for these threats.
Jun 25, 2025Focus Friday: Grafana Vulnerability and Cisco Clamav Risks From a TPRM Perspective
Unpack the high-severity vulnerability in Grafana and multiple security flaws in Cisco’s ClamAV antivirus engine from a TPRM perspective.
Jun 20, 2025New-generation Ransomware Groups Are a Growing Threat
Emerging ransomware groups are using new, evolved tactics, including legitimate software, to bypass defenses. Learn how to protect your organization.
Jun 18, 2025Focus Friday: TPRM Insights Into Tridium Niagara and Elastic Kibana Vulnerabilities
Dive into critical Tridium Niagara and Elastic Kibana vulnerabilities from a TPRM perspective. Learn to assess vendor risk and mitigate proactively.
Jun 13, 2025Now’s the Time for Agile, Data-driven TPRM (and Our Latest Research Proves It)
Traditional TPRM fails against modern threats. New research reveals how to build an agile third-party risk management program for supply chain resilience.
Jun 4, 2025Built with Now: Black Kite Announces Integration with Servicenow to Boost Supply Chain Cyber Resiliency
Discover how Black Kite’s integration with ServiceNow elevates third-party risk management and strengthens supply chain cyber resilience.
Jun 4, 2025Focus Friday: TPRM Insights Into Zimbra, Draytek Vigor, Atlassian Jira Data Center, Tornado, and Mdaemon Vulnerabilities
Timely TPRM insights into critical vulnerabilities affecting Zimbra, Draytek Vigor, Atlassian Jira Data Center, Tornado, and MDaemon and next steps
May 23, 2025How to Implement Vulnerability Management in TPRM
Learn to operationalize vulnerability intelligence in TPRM. How to prioritize and act on the critical third-party vulnerabilities with insights.
May 22, 2025