Supply Chain Attack
Supply Chain Attack
A cyberattack that infiltrates a target company by exploiting weaker security at its affiliates or business partners.
In Simple Terms
A supply chain attack is a cyberattack that uses a target company's business partners or subcontractors—wherever security happens to be weaker—as a stepping stone to reach the real target, a large corporation. Attackers first look for weak spots, like an affiliate with poor security or software the company relies on. They then use that connection to slip malware into the target's systems or break in directly, ultimately stealing valuable information.
Behind the Name
The term comes from "Supply Chain"—the connected chain of steps that carries raw materials through manufacturing and assembly until a product finally reaches you. Attackers get their name from targeting the weakest link in that chain to break through to their real target.
Take a Closer Look!
A supply chain attack is a cyberattack that, rather than directly targeting a primary target like a large corporation or government agency, breaks in through the weaker security of its business partners or affiliated companies. Since hacking a large company with strong security directly is difficult, attackers use a less-guarded subsidiary as a stepping stone instead.
There are mainly two methods used in this kind of attack: breaking into systems and tampering with software. One well-known technique involves infiltrating a business partner's internal system and then slipping malware into emails exchanged with the target company. Another, more elaborate method involves planting malware in advance inside a software update file used by many companies.
Put simply, strengthening your own company's security alone isn't enough to stop this kind of attack. That's why it's so important for connected group companies and business partners to align on security standards and work on countermeasures together. Even communications from a trusted partner shouldn't be taken at face value—you need a system in place that constantly checks the security of the whole network.