A supply chain attack is a cyber attack aimed at targeting an insecure element in the supply chain against the intended organization.
Supply chain attacks can occur in any industry, including the financial industry, the oil industry, and government agencies.
Cyber-attackers can introduce rootkits and hardware-based spy components into the products of legitimate suppliers to attack the users of those products.
The Internet Security Threat Report from Symantec shows that supply chain attacks continue to be a feature of the threat, increasing by 78% in 2018.
Target security breach, ATM malware in Eastern Europe, and Stuxnet computer worm are well-known examples of supply chain attacks.
Comments