Black Kite Expands Threat Detection with ThreatTrace™ for Third-Party Cyber Risk
Event summary
- Black Kite launched ThreatTrace™ on January 29, 2026, a new capability that uses NetFlow and DNS telemetry to detect Indicators of Compromise (IOCs) in third-party cyber risk management.
- ThreatTrace™ analyzes 1T+ internet traffic flows to identify botnet infections, suspicious outbound activity, active threat actor targeting, traffic baseline deviations, and geopolitical/service risks.
- Black Kite claims to be the first Third-Party Cyber Risk Management (TPCRM) vendor to incorporate this level of visibility into its platform.
- The platform is trusted by over 3,000 customers and covers risk intelligence for over 40 million companies.
The big picture
Black Kite's ThreatTrace™ introduction underscores the growing emphasis on proactive third-party cyber risk management. As supply chain attacks become more sophisticated, the ability to detect and mitigate threats through internet traffic analysis is becoming a critical differentiator in the cybersecurity landscape. The platform's expansion into NetFlow and DNS telemetry reflects broader industry trends toward deeper integration of network data for threat intelligence.
What we're watching
- Competitive Differentiation
- Whether Black Kite can maintain its lead as the first TPCRM vendor with this level of threat detection capability.
- Adoption Pace
- The pace at which existing and new customers will integrate ThreatTrace™ into their third-party risk management strategies.
- Threat Detection Efficacy
- How effectively ThreatTrace™ can identify and mitigate emerging cyber threats compared to traditional methods.
Related topics