WHITEHAWK LIMITED — Capital/Financing Update 2019

Nov 11, 2019

==> picture [115 x 65] intentionally omitted <==

FOR IMMEDIATE RELEASE 12 November 2019

Top 12 Defense Industrial Base Company Expands and Extends WhiteHawk Cyber Risk Radar Contract

For Business and Cyber Supply Chain Risk Management

Highlights

• Developing a permanent program with this Top 12 Defense Industrial Base Company solidifies WhiteHawk’s presence in a sector in severe need of supply chain cyber risk mitigation services

• This contract establishes an annual subscription Supply Chain Cyber Risk Management Program of 150 Vendors and over US $500,000

• This comprehensive WhiteHawk Cyber Risk Radar includes continuous monitoring, alerting, prioritization and mitigation of business and cyber risks across 3 tiers of suppliers and vendors, in near real time

• Comes as the US Defense Department embarks upon an ambitious schedule for a serious overhaul of the way it monitors and enforces cybersecurity within its industrial base

• In conjunction with WhiteHawk’s top 5 finish in DIB outreach challenge, shows company is an asset to the defense industry

• Strong start to fourth quarter following a big third quarter

Perth, WA and Alexandria, VA – WhiteHawk Limited (ASX:WHK) (“WhiteHawk” or “the Company”), the first global online cyber security exchange enabling small-to-medium businesses to take smart action against cybercrime, is pleased to announce the extension and expansion of a contract to provide its Cyber Risk Radar to a top 12 defense industrial base company for supply chain risk management.

Further to ASX announcement dated 18 June 2019 and 7 December 2018, this top 12 Defense Industrial Base company has contracted with WhiteHawk to implement a comprehensive Cyber Risk Radar (formerly the 360 Cyber Risk Framework), which includes provisioning of an integrated online Software as a Service (SaaS) subscription augmented by consulting services. Through quarterly reporting, the Customer will establish a Cyber Risk Rating baseline for key supplier companies in support of federal contracts by means of continuous monitoring, alerts, prioritization and actionable mitigation recommendations. This approach will provide the customer with actionable

Level 28 140 St George Tce Perth WA 6000 Tel : +61 8 6311 4636, Fax : +61 8 6311 4661 ABN: 97 620 459 823 www.whitehawk.com

==> picture [115 x 65] intentionally omitted <==

intelligence, clear visibility and transparency into the cyber health and status of its suppliers in advance of tightening government benchmarks and requirements.

The Customer will receive quarterly WhiteHawk Cyber Risk Scorecards for 150 critical suppliers and Risk Portfolio Reports across the entire population of suppliers. These non-technical reports will provide focused and actionable risk insights, based upon automated WhiteHawk Cyber Analytics and Cyber Analyst prioritization of cyber intelligence risk indicators, across raw data collected from the WhiteHawk team of security rating providers. These WhiteHawk developed quarterly reports summarize key findings and make prioritized recommendations for each supplier company to act upon in order to measurably advance their cyber maturity.

The customer will also maintain access to a comprehensive business ecosystem dashboard that includes business, technical, and security risks. With the addition of a centralized vendor risk management dashboard, the Customer will have the ability to view and monitor the identified suppliers’ cyber security risk ratings, business risk scores, and WhiteHawk Cyber Risk Scorecards in a single location.

Terry Roberts, Executive Chair of WhiteHawk, commented, “This opportunity to demonstrate at scale our integration and prioritization of commercial cyber risk monitoring and mitigation across 150 U.S. Department of Defense cyber organizations and professionals is something we have worked to achieve for over a year. With the expansion of this contract we can now showcase how new Department of Defense supply chain cyber risk objectives, guidelines and certifications can be automated across thousands of Defense Contractors and Suppliers as never before.”

-ENDS-

For more information:

WhiteHawk WhiteHawk Viaticus Capital Media inquiries (USA) Investor inquiries (AUS) Institutional Inquiries Forrest Allen Kevin Kye Gavin Rezos publicrelations@whitehawk.com investors@whitehawk.com grezos@viaticuscapital.com +1 833 942-9237 +61 8 6311 4636 +447447560303

Level 28 140 St George Tce Perth WA 6000 Tel : +61 8 6311 4636, Fax : +61 8 6311 4661 ABN: 97 620 459 823 www.whitehawk.com

==> picture [115 x 65] intentionally omitted <==

About WhiteHawk

Launched in 2016, WhiteHawk began as a cyber risk advisory service with a vision to develop the first online self-service, cyber security exchange, simplifying how companies and organizations discover, decide, and purchase cyber security solutions that directly mitigate their key cyber business risks.

Today, we help US companies to connect to content, solutions, and service providers through evolving our rich data and user experience. WhiteHawk is a cloud-based cyber security exchange platform that delivers virtual consultations, Artificial Intelligence Cyber Risk Scorecards that immediately match SME customers to tailored ‘solutions on demand. The platform enables customers to leverage their tailored Security Story to find affordable and impactful cyber tools, content, and relevant services through our algorithms and expertise, to better understand how to improve and stay ahead of today’s cyber threats. The Platform enables companies to fill their needs on an ongoing basis with demonstrated cost and time savings.

For more information, visit www.whitehawk.com.

Level 28 140 St George Tce Perth WA 6000 Tel : +61 8 6311 4636, Fax : +61 8 6311 4661 ABN: 97 620 459 823 www.whitehawk.com