Third-Party Risk Management stories

Singapore firms boast world-leading third-party cyber risk programmes, yet 93% still report supply chain-related breaches, BlueVoyant warns.

Australian organisations face mounting cyber risk as vendor networks outgrow weak third party controls, with 99% hit by supply chain breaches.

Qilin ransomware group has targeted 25 South Korean finance firms using managed service providers, exposing 2TB of data in a politically charged cyberattack surge.

U.S. MSPs can support critical infrastructure clients in meeting CIRCIA's 2026 cyber incident reporting rules, ensuring faster detection and compliance readiness.

Three-quarters of US firms faced fines for data breaches or compliance failures last year, amid rising regulatory demands and a growing skills shortage.

UK businesses suffer the highest global supply chain breach rates, despite increased spending and planned AI adoption for risk management.

Australian banks must embrace AI, cloud tech and resilience-first strategies to cut costs and boost agility in a competitive, evolving market by 2026.

New Zealand’s cybersecurity firm DEFEND clinched Microsoft’s Global Security Partner of the Year amid rising state-backed cyber attacks targeting local businesses daily.

A new report reveals 90% of UK insurers faced supply chain cyber incidents last year, urging a shift to collective resilience to bolster sector security.

Law enforcement and cybersecurity firms have disrupted major malware networks amid rising risks from AI-driven cyberattacks and escalating supply chain breaches globally.

Manifest and NetRise have partnered to enhance software supply chain security with deep firmware analysis, improving risk monitoring across critical sectors like healthcare.

Global ransomware attacks surged 28% in September, with Industrials hardest hit, as cyber criminals ramp up efforts ahead of the busy holiday season.

Australia sees a 17% rise in data breaches as AI-driven threats on hybrid cloud systems surge, prompting tighter APRA regulations on cybersecurity compliance.

Black Kite Bridge has shared over 100,000 cyber risk intelligence items in its first year, boosting supply chain security through rapid, collaborative responses.

The Cloud Security Alliance has launched the SaaS Security Capability Framework, the first industry-wide standard addressing critical security gaps in SaaS applications.

Gregory Webb has been appointed CEO of HITRUST, succeeding founder Daniel Nutkis, who will become Executive Chairman, ensuring leadership continuity.

Australia faces rising state-sponsored cyberattacks on critical infrastructure, prompting stricter government measures and a human-focused defence approach.

Bitsight's vendor network has grown 40% to 68,000 firms as AI integration cuts onboarding time by 70% and reduces breach risk by 75%.

Cynomi unveils a new TPRM module to help service providers manage vendor risks faster and more efficiently within its vCISO platform.

Gartner urges CHROs to prioritise cyber security as HR systems increasingly adopt AI, highlighting the risks of data breaches and the need for stronger digital oversight.