Third-Party Risk Management stories

Global ransomware attacks surged 28% in September, with Industrials hardest hit, as cyber criminals ramp up efforts ahead of the busy holiday season.

Australia sees a 17% rise in data breaches as AI-driven threats on hybrid cloud systems surge, prompting tighter APRA regulations on cybersecurity compliance.

Black Kite Bridge has shared over 100,000 cyber risk intelligence items in its first year, boosting supply chain security through rapid, collaborative responses.

The Cloud Security Alliance has launched the SaaS Security Capability Framework, the first industry-wide standard addressing critical security gaps in SaaS applications.

Gregory Webb has been appointed CEO of HITRUST, succeeding founder Daniel Nutkis, who will become Executive Chairman, ensuring leadership continuity.

Australia faces rising state-sponsored cyberattacks on critical infrastructure, prompting stricter government measures and a human-focused defence approach.

Bitsight's vendor network has grown 40% to 68,000 firms as AI integration cuts onboarding time by 70% and reduces breach risk by 75%.

Cynomi unveils a new TPRM module to help service providers manage vendor risks faster and more efficiently within its vCISO platform.

Gartner urges CHROs to prioritise cyber security as HR systems increasingly adopt AI, highlighting the risks of data breaches and the need for stronger digital oversight.

Black Kite has launched its Adversary Susceptibility Index to help firms spot which suppliers are most exposed to specific cyber threat actors, enhancing risk management.

Most financial firms in EMEA admit data resilience gaps six months after DORA, with 96% acknowledging need for improvements to meet new EU rules.

Ransomware, AI-powered attacks and vendor risks drive billions in cyber breach costs in 2025, with retail the hardest hit sector globally.

Qantas has revealed a cyberattack on a third-party call centre, exposing personal data of 5.7 million customers and raising serious security concerns.

APRA demands super funds boost cyber security, mandating multi-factor authentication by August 2025 to protect member savings from rising cyber threats.

KYND partners with Talan to offer real-time cyber risk intelligence, boosting UK, European and Middle Eastern clients' defence against evolving threats.

Canadian CIOs must reduce technical debt, harness AI, boost cyber resilience, manage third-party risks, and inspire cultural change to navigate ongoing uncertainty.

BlueVoyant has launched a Software Bill of Materials tool to help firms manage third-party software risks and improve supply chain cyber defence.

LexisNexis has suffered a data breach exposing personal details of over 364,000 people via a third-party software platform, raising security concerns.

myCOI launches illumend, an AI-powered platform designed to simplify third-party insurance compliance for risk managers and property teams alike.

Black Kite launches Vulnerability Intelligence Briefs to help organisations identify and manage third-party cyber risks, enhancing supply chain security.