home.social

#riskanalytics — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #riskanalytics, aggregated by home.social.

  1. Third-party ecosystems are structurally exposed.
    Black Kite’s 2026 report reframes supply chain cyber risk from “weakest link” theory to concentration dynamics.

    Key systemic indicators:
    • 5.28 downstream victims per breach (2025 average)
    • 10-day median detection vs. 73-day median disclosure
    • 53%+ organizations with at least one critical vulnerability
    • 23%+ with corporate credentials exposed

    Top 50 shared vendors:
    – 70% KEV exposure
    – 84% CVSS ≥ 8
    – 62% stealer-log credential presence
    – 52% breach history

    Shared infrastructure nodes are now strategic attack surfaces.
    Security teams must shift toward:
    Dependency mapping
    Concentration analytics
    Active intelligence monitoring
    Exposure propagation modeling
    Is your organization modeling systemic fragility — or auditing in isolation?

    Source: blackkite.com/press-releases/b

    Engage below.
    Follow TechNadu for advanced infosec, vendor risk, and threat intelligence coverage.

    #Infosec #ThirdPartyRisk #VendorSecurity #ThreatIntelligence #CISAKEV #CyberExposure #Ransomware #SupplyChainSecurity #SecurityEngineering #CyberResilience #RiskAnalytics

  2. Third-party ecosystems are structurally exposed.
    Black Kite’s 2026 report reframes supply chain cyber risk from “weakest link” theory to concentration dynamics.

    Key systemic indicators:
    • 5.28 downstream victims per breach (2025 average)
    • 10-day median detection vs. 73-day median disclosure
    • 53%+ organizations with at least one critical vulnerability
    • 23%+ with corporate credentials exposed

    Top 50 shared vendors:
    – 70% KEV exposure
    – 84% CVSS ≥ 8
    – 62% stealer-log credential presence
    – 52% breach history

    Shared infrastructure nodes are now strategic attack surfaces.
    Security teams must shift toward:
    Dependency mapping
    Concentration analytics
    Active intelligence monitoring
    Exposure propagation modeling
    Is your organization modeling systemic fragility — or auditing in isolation?

    Source: blackkite.com/press-releases/b

    Engage below.
    Follow TechNadu for advanced infosec, vendor risk, and threat intelligence coverage.

    #Infosec #ThirdPartyRisk #VendorSecurity #ThreatIntelligence #CISAKEV #CyberExposure #Ransomware #SupplyChainSecurity #SecurityEngineering #CyberResilience #RiskAnalytics

  3. Third-party ecosystems are structurally exposed.
    Black Kite’s 2026 report reframes supply chain cyber risk from “weakest link” theory to concentration dynamics.

    Key systemic indicators:
    • 5.28 downstream victims per breach (2025 average)
    • 10-day median detection vs. 73-day median disclosure
    • 53%+ organizations with at least one critical vulnerability
    • 23%+ with corporate credentials exposed

    Top 50 shared vendors:
    – 70% KEV exposure
    – 84% CVSS ≥ 8
    – 62% stealer-log credential presence
    – 52% breach history

    Shared infrastructure nodes are now strategic attack surfaces.
    Security teams must shift toward:
    Dependency mapping
    Concentration analytics
    Active intelligence monitoring
    Exposure propagation modeling
    Is your organization modeling systemic fragility — or auditing in isolation?

    Source: blackkite.com/press-releases/b

    Engage below.
    Follow TechNadu for advanced infosec, vendor risk, and threat intelligence coverage.

    #Infosec #ThirdPartyRisk #VendorSecurity #ThreatIntelligence #CISAKEV #CyberExposure #Ransomware #SupplyChainSecurity #SecurityEngineering #CyberResilience #RiskAnalytics

  4. Third-party ecosystems are structurally exposed.
    Black Kite’s 2026 report reframes supply chain cyber risk from “weakest link” theory to concentration dynamics.

    Key systemic indicators:
    • 5.28 downstream victims per breach (2025 average)
    • 10-day median detection vs. 73-day median disclosure
    • 53%+ organizations with at least one critical vulnerability
    • 23%+ with corporate credentials exposed

    Top 50 shared vendors:
    – 70% KEV exposure
    – 84% CVSS ≥ 8
    – 62% stealer-log credential presence
    – 52% breach history

    Shared infrastructure nodes are now strategic attack surfaces.
    Security teams must shift toward:
    Dependency mapping
    Concentration analytics
    Active intelligence monitoring
    Exposure propagation modeling
    Is your organization modeling systemic fragility — or auditing in isolation?

    Source: blackkite.com/press-releases/b

    Engage below.
    Follow TechNadu for advanced infosec, vendor risk, and threat intelligence coverage.

    #Infosec #ThirdPartyRisk #VendorSecurity #ThreatIntelligence #CISAKEV #CyberExposure #Ransomware #SupplyChainSecurity #SecurityEngineering #CyberResilience #RiskAnalytics

  5. 🚨 Risk 2026 abstracts are live — register now:

    rconsortium.github.io/Risk_web

    If you use R for risk - finance/insurance/health/climate/cyber - this is for you: 2 days, online, recorded talks + live Q&A.

    Highlights: JD Long keynote; reproducible validation (Docker + Quarto + {renv}/{targets}); cyber risk (Bayesian + Monte Carlo, FAIR + MITRE); “risky viz” with ggplot; outbreak geospatial risk (MaxEnt); air-quality risk pipelines (Actions + Quarto + alerts).