Third-Party Risk Management stories - Page 2

U.S. MSPs can support critical infrastructure clients in meeting CIRCIA's 2026 cyber incident reporting rules, ensuring faster detection and compliance readiness.

Three-quarters of US firms faced fines for data breaches or compliance failures last year, amid rising regulatory demands and a growing skills shortage.

Law enforcement and cybersecurity firms have disrupted major malware networks amid rising risks from AI-driven cyberattacks and escalating supply chain breaches globally.

Manifest and NetRise have partnered to enhance software supply chain security with deep firmware analysis, improving risk monitoring across critical sectors like healthcare.

Global ransomware attacks surged 28% in September, with Industrials hardest hit, as cyber criminals ramp up efforts ahead of the busy holiday season.

Black Kite Bridge has shared over 100,000 cyber risk intelligence items in its first year, boosting supply chain security through rapid, collaborative responses.

The Cloud Security Alliance has launched the SaaS Security Capability Framework, the first industry-wide standard addressing critical security gaps in SaaS applications.

Gregory Webb has been appointed CEO of HITRUST, succeeding founder Daniel Nutkis, who will become Executive Chairman, ensuring leadership continuity.

Bitsight's vendor network has grown 40% to 68,000 firms as AI integration cuts onboarding time by 70% and reduces breach risk by 75%.

Cynomi unveils a new TPRM module to help service providers manage vendor risks faster and more efficiently within its vCISO platform.

Gartner urges CHROs to prioritise cyber security as HR systems increasingly adopt AI, highlighting the risks of data breaches and the need for stronger digital oversight.

Black Kite has launched its Adversary Susceptibility Index to help firms spot which suppliers are most exposed to specific cyber threat actors, enhancing risk management.

Ransomware, AI-powered attacks and vendor risks drive billions in cyber breach costs in 2025, with retail the hardest hit sector globally.

Canadian CIOs must reduce technical debt, harness AI, boost cyber resilience, manage third-party risks, and inspire cultural change to navigate ongoing uncertainty.

BlueVoyant has launched a Software Bill of Materials tool to help firms manage third-party software risks and improve supply chain cyber defence.

LexisNexis has suffered a data breach exposing personal details of over 364,000 people via a third-party software platform, raising security concerns.

myCOI launches illumend, an AI-powered platform designed to simplify third-party insurance compliance for risk managers and property teams alike.

Black Kite launches Vulnerability Intelligence Briefs to help organisations identify and manage third-party cyber risks, enhancing supply chain security.

Kiteworks has revealed its report on the top data breaches of 2024, highlighting the increasing importance of data sensitivity in assessing breach severity.

APRA-regulated entities in Australia must prepare for the upcoming CPS230 deadline, a shift aimed at enhancing operational and third-party risk management.