How supply chain cyberattacks work — and why they’re so difficult to thwart
AXIOS June 23, 2023
A pair of recent high-profile cyberattacks are putting a spotlight back on a hacking tactic that’s growing in popularity.
The big picture: A number of supply chain attacks have already impacted organizations this year — and despite the name, the attacks have nothing to do with better-known trade supply chains.
- Instead, in the cybersecurity world, a supply chain attack refers to a cyberattack on companies’ software vendors, or their software supply chain.
How it works: Supply chain attacks often start with hackers targeting a single entity — typically a software provider — in the hopes of accessing information from that organization’s customers.
- To do this, malicious hackers will often add malware to the infiltrated product’s software updates,...