Addressng Thrd-Party Cyber Rsk: Movng Beyond a False Sse of Securty

Addressing Third-Party Cyber Risk: Moving Beyond a False Sense of Security

Over the past dede, cyber ncdts stemmng from thrd-party supplers have be growng n number—and sophstton. n the earlest ncdts that attraed wdespread attton, cyber aors plfered personal dtfable nformaton from large companes through farly straghtford stratees, such as a 014 breach nvolvng stol network credtals from subcontraors that handled hng and ar condtonng. Snce th, thrd partes have evolved from beng a way to target a sngle company to a back door to an organzaton’s portfolo of customers. n late 00, for example, advanced cyber aors mted source code nto a softe vdor’s code repostory, ganng access to the data of hundreds or ev thousands of the vdor’s customers, ncludng U.S. federal agces, crtl nfrastruure ttes, and hgh-profle organzatons.

 

Addressng Thrd-Party Cyber Rsk: Movng Beyond a False Sse of Securty


Source

Leave a Reply