Free TPRM Resources
Your source for primary cybersecurity research from the Black Kite Research Group, thought leadership content on topics that matter today, and more resources to sharpen your TPRM program.
2025 Ransomware Report
Get the latest ransomware data. The 2025 Ransomware Report analyzes a 24% surge in attacks, SMB targets, and the growing risk to third-party vendor ecosystems.
May 13, 2025
Black Kite Third-party Breach Report 2025
Discover how third-party breaches became 2024's top cyber threat. Get key insights and strategies from Black Kite’s 2025 Third-Party Breach Report.
Feb 11, 2025
2025 Supply Chain Vulnerability Report
Learn to analyze vulnerabilities in third parties, understand attacker tactics, and prioritize critical threats for TPRM remediation in this in-depth report.
Apr 4, 2025
AI for TPRM Humans: How to Accelerate Vendor Vetting Without Questionnaires
Stop relying on manual questionnaires. Learn how AI transforms pre-contract due diligence, providing objective data to vet vendors faster and smarter.
Jan 6, 2026
Top 5 TPRM Predictions for 2026: What Cybersecurity Leaders Need to Know
From eight-figure manufacturing losses to a 50% failure rate for AI startups, these predictions will shape third-party risk management in 2026.
Dec 31, 2025Focus Friday: TPRM Insights on Sonicwall Sma1000, Fortigate Ssl-vpn, N8n, Exim Mail, Zimbra, Mongodb, M-files, Elastic Kibana, and Freebsd Vulnerabilities
TPRM Insights: SonicWall SMA1000, FortiGate SSL-VPN, n8n, Exim Mail, Zimbra, MongoDB, M-Files, Elastic Kibana, and FreeBSD Vulnerabilities
Dec 26, 2025Focus Friday: TPRM Insights on React2shell Urgent Exploitation Update and Critical Risks in Screenconnect, Centrestack & Triofox, Jenkins, Freepbx, and Gogs
TPRM Insights: React2Shell Urgent Exploitation Update and Critical Risks in ScreenConnect, CentreStack & Triofox, Jenkins, FreePBX, and Gogs
Dec 19, 2025This Is Why Third-party Risk Never Ends
Move beyond compliance theater. TPRM experts reveal the 5 mistakes ruining your TPRM program and how to fix them in this video and breakdown article.
Dec 17, 2025Focus Friday: TPRM Insights Into Fortinet Sso Bypass, Exchange Server Flaws, and Cacti Rce Risks
TPRM Insights Into Focus Friday: TPRM Insights Into Fortinet SSO Bypass, Exchange Server Flaws, and Cacti RCE Risks from the Week of December 12, 2025.
Dec 12, 2025Gartner® Hype Cycle™ for Cyber Risk Management, 2025
Dec 9, 2025The Hidden Costs of AI Adoption in TPRM
AI adoption in TPRM brings hidden costs like governance and compute power. Learn how to manage the total cost of ownership for AI tools.
Dec 9, 2025Product Analysis with Black Kite
Black Kite Product Analysis Solution Brief Unlock Product-Level Intelligence to Mitigate Software Supply Chain Exposure
Dec 4, 2025Focus Friday: TPRM Insights Into React2shell and Mixpanel Data Exposure Risks
TPRM Insights Into Focus Friday: React2Shell and Mixpanel Data Exposure Risks from the Week of December 5, 2025.
Dec 4, 2025How to Beat Ransomware Fatigue
Ransomware fatigue is real, and it puts your vendors at risk. Learn the truth about cybercrime economics and how to fight burnout with automation.
Dec 3, 2025Focus Friday: TPRM Insights Into Sonicwall Ssl Vpn, Grafana Enterprise Scim, Apache Skywalking Vulnerabilities, and Gainsight Client Incident
TPRM Insights Into Focus Friday: SonicWall SSL VPN, Grafana, Apache SkyWalking Vulnerabilities, and Gainsight Incident from the Week of November 28, 2025.
Nov 28, 2025