Black Kite, the leader in third-party cyber risk intelligence, today introduced Vulnerability Intelligence Briefs (VIB). This groundbreaking solution goes beyond cataloging Common Vulnerabilities and Exposures (CVEs) by providing visibility into third-party risks, enabling security professionals to discover a vulnerability’s severity, exploitability, and exposure.
Read More onย CIO Influence:ย AI-Augmented Risk Scoring in Shared Data Ecosystems
An organization’s third-party vulnerabilities are its greatest risk exposure, exacerbating challenges faced by security teams that frequently rely on traditional vulnerability management solutions focused on internal systems. As a result, they are operating with a critical blind spot in the security posture of vendors and partners. This gap creates a significant risk, as a single unpatched vulnerability in a third-party system can trigger a cascading impact across an entire organization.
“As more organizations turn to third-party vendors, open-source components, and cloud services, in today’s environment, they cannot afford to rely on a traditional vulnerability management mindset,” saidย Chuck Schauber, Chief Product Officer at Black Kite. “Third-party risks are increasing, with vulnerabilities fast becoming a third-party risk management issue. With the release of Black Kite VIB, we are providing a solution that has the actionable intelligence and tools needed so that organizations can move from reactive patching to a strategic ecosystem defense. Without doubt, this launch represents a new era where managing vulnerability risks in third-parties is not only possible but now is a critical part of third-party cyber risk management.”
According to Black Kite’s recently releasedย 2025 Supply Chain Vulnerability Report: Navigating a New Era of Managing Vulnerability Risk in Third Parties,ย 2024 marked a sharp increase in published vulnerabilities, with over 40,000 CVEs disclosed, representing a 38% year-over-year increase. Many of these exploited vulnerabilities were found in widely used third-party software rather than internally developed applications, with high-profile vulnerabilities in MOVEit, Fortra GoAnywhere, and Ivanti products demonstrating how supply chain risks can propagate. These findings further validate that vulnerability management must evolve beyond internal patching strategies.
With VIB, Black Kite is revealing vulnerabilities across the supply chain so that organizations can assess the associated risks and their impact, prioritize the vulnerabilities that need to be mitigated, and engage with their vendors to strengthen their security and the security of the entire supply chain.
Catch more CIO Insights:ย Ghost Security Releases Groundbreaking Research: AI-Driven Analysis Exposes Flaws in Static Application Security Testing
Key benefits and features include:
- Take control of third-party risks:ย Detect, assess, and drive vendor response at the speed of real-world threats by bridging the gap between risk intelligence and action to make third-party risk management truly effective.
- Go beyond CVEs:ย Gain insights beyond just cataloguing CVEs by discovering how relevant, discoverable, and actionable those vulnerabilities are when it comes to third-party cyber risk.
- Leverage OSINT:ย Focus on exploitable vulnerabilities with actionable risk intelligence to move from reactive patching to proactive ecosystem defense through Auto-Scanning for measuring patch management risk, and FocusTagsโข, Black Kite’s new tagging feature that automatically flags vendors who have experienced a data breach, ransomware attack, or other significant cyber incident for rapid response to high-priority threats.
Resources:
- Meet Black Kite:ย Request a meetingย with our team inย San Franciscoย for the RSA Conference 2025 fromย Monday, April 28 – Thursday, May 1.
- Black Kite’s Signature Whiskey Tasting: Join us at this exclusive event, which will be held onย April 29ย andย April 30ย fromย 4-6:00pm PTย at the Four Seasons Hotel San Francisco, located at 757 Market Street.
- To learn more about our events, schedule a demo, or meet with us, please visit:ย https://blackkite.com/request-a-demo/.
- Black Kite’s VIB is available now to new and existing customers. For more information about Black Kite’s new features and VIB capabilities.
[To share your insights with us, please write toย psen@itechseries.com]
