Free TPRM Resources
Your source for primary cybersecurity research from the Black Kite Research Group, thought leadership content on topics that matter today, and more resources to sharpen your TPRM program.
Focus Friday: TPRM Insights on Ivanti Epmm and Sap Netweaver Vulnerabilities – Ongoing Threat Actor/ransomware Groups Activity
Explore critical vulnerabilities Ivanti EPMM & SAP NetWeaver through a TPRM lens. Learn how to identify and manage vendor risks.
May 16, 2025
Why Counting CVEs Misses the Real Third-party Risk
Counting CVEs for vendor risk is misleading. Why relevance, discoverability, and actionability are key to third-party vulnerability management.
May 15, 2025
2025 Ransomware Report
Get the latest ransomware data. The 2025 Ransomware Report analyzes a 24% surge in attacks, SMB targets, and the growing risk to third-party vendor ecosystems.
May 13, 2025
Black Kite Releases 2025 Ransomware Report, Revealing 123% Increase in Ransomware Attacks Over Two Years
Explore Black Kite’s 2025 ransomware report showing a 123% rise in attacks, growing supply-chain threats, and proactive defense insights.
May 13, 2025
Focus Friday: TPRM Insights Into Sysaid, Activemq, Webmin, and Couchbase Server Vulnerabilities
Explore critical vulnerabilities in SysAid, ActiveMQ, Webmin, and Couchbase Server through a TPRM lens. Learn how to identify and manage vendor risks.
May 9, 2025Your Friendly Neighborhood Ransomware Syndicate Will See You Now
Discover how LockBit ran ransomware like a business before getting hacked themselves. Understand the implications for TPRM.
May 8, 2025Focus Friday: TPRM Approach to Sap Netweaver Vcframework Rce and Apache Tomcat Http/2 Dos and Rewrite-rule Bypass
Learn TPRM implications of SAP NetWeaver RCE (CVE-2025-31324) and Apache Tomcat DoS/bypass (CVE-2025-31650/51) along with remediation guidance.
May 2, 2025Black Kite Unveils Vulnerability Intelligence Briefs to Provide Visibility Into Third-party Vulnerability Risks
Discover how Black Kite’s Vulnerability Intelligence Briefs offer visibility into third-party vulnerability risks and enhance security decision-making
Apr 29, 2025Focus Friday: TPRM Insights Into Fortinet Backdoors, Sonicwall Sslvpn, and Redis Dos Vulnerabilities
Understand the TPRM impact of the Fortinet backdoor, SonicWall SSLVPN DoS, and Redis DoS vulnerabilities. Actionable insights from a TPRM perspective.
Apr 25, 2025How to Prioritize Vulnerabilities in Your Supply Chain: a Proven Approach to Cut Through the Noise
Overwhelmed by CVEs? Learn a proven 3D approach to prioritize supply chain vulnerabilities beyond severity. Watch our video and read the report.
Apr 23, 2025Ey Us Unveils Paul Paget of Black Kite as an Entrepreneur of the Year® 2025 New England Award Finalist
Paul Paget, CEO of Black Kite, is named a finalist for EY US’s prestigious Entrepreneur of the Year 2025 New England award.
Apr 21, 2025Focus Friday: Third-party Risks From Adobe Coldfusion and Beego Xss Vulnerabilities
Understand the TPRM implications of Adobe ColdFusion and Beego XSS vulnerabilities. Get vendor questions and remediation steps. Read our analysis now!
Apr 18, 2025