Wednesday, August 10 2022

What is a supply chain attack?

Simply put, a system of activities involving distribution, handling, manufacturing and processing of elements in order to move resources from vendor to final consumer in a supply network is called a supply chain. By targeting less-secure elements in the supply network, A supply chain attacker breaks into the supply chain network of the organization. Any industry, from the financial sector, oil industry or government sector, cant be exempted from the likelihood of attacked by supply chain attack.

How do attackers break into the supply chain network?

By installing a rootkit or hardware-based spying components, Cyber criminals typically tamper with the manufacturing process of a product. In an Internet Security Threat Report, powered by Symantec, it is stated that supply chain attacks still continues to be a feature of the threat landscape, with an increase by 78 percent in 2018.

Examples of supply chain attack

Stuxnet computer worm and Eastern European ATM malware are examples of supply chain attacks.

How to avoid supply chain attack?

If managed poorly, supply chain management systems can become significant hazards for cyber attacks, leading to a loss of sensitive customer information, disruption of the manufacturing process, and damaging a company’s reputation.

Supply chain management experts recommend strict control of an institution’s supply network in order to prevent potential damage from cyber criminals.

How to prevent supply chain attack?
Previous

Web applications suffered 52% more attacks in 2019

Next

All Apps at the Google Play Store safe?

Check Also

Widget

Don’t Miss

Cyber Deals: Cybrary, Ping Identity, Axio Global

James Hu

Cybersecurity Venture Funding and Mergers: Key investments were made in cybersecurity training, secure enterprise browser, and risk management companies. M&A activity this week involved identity security, zero trust, and threat intelligence firms. Funding Cybrary, a cybersecurity training platform, raised $25 million in a Series C funding round. The round was led by BuildGroup and Gula […]

Cybrary Secures $25 Million in Series C Funding Round

James Hu

Cybrary, a Maryland-based cybersecurity training platform provider, raised $25 million in a Series C funding round. The round was led by BuildGroup and Gula Tech Adventures, two of its current investors. Following its $15 million Series B round announced in November 2019, this latest investment brings Cybrary’s total funding to date to $48 million. Cybrary […]

Cyber Deals: Exterro, Naoris Protocol, Cybit Sec

James Hu

Cybersecurity Venture Funding and Mergers: This week, notable funding and M&A activity involved compliance, enterprise security, and vulnerability assessment firms. Funding Exterro, a legal governance, risk, and compliance software provider, completed a strategic recapitalization valuing the firm at over $1 billion. The company, currently owned by Leeds Equity Partners, is targeting a potential 2023 initial […]

Cyber Deals: Halborn, Irideos, Anvilogic

James Hu

Cybersecurity Venture Funding and Mergers: This week, cybersecurity venture funding and M&A activity involved blockchain, artificial Intelligence, and SaaS solution providers. Many of these deals will also be funding the future of cloud security. Funding Halborn, a blockchain cybersecurity firm, raised $90 million in a Series A funding round led by Summit Partners with participation […]

Huntress acquires Curricula for $22 million

James Hu

Huntress, a cybersecurity firm providing a security management platform to small and medium sized businesses, has acquired Curricula, a security awareness training service provider, for $22 million. Curricula is a freemium SaaS company offering solutions for employee cybersecurity training. Their methods incorporate behavioral learning techniques and engaging storytelling to maximize employee engagement. Small and medium […]

Applus+ acquires jtsec

James Hu

Applus+, a certification services provider based in Spain, has acquired jtsec, a cybersecurity certification company. jtsec is based in Spain, providing cybersecurity solutions for various industries including the health, financial, and Internet of Things (IoT) sectors. Beyond their certification services, jtsec is also known for its penetration testing offerings. Applus+ provides certifications for the energy, […]