The Quick Guide to Understanding Supply Chain Attacks
Supply chain attacks have been in the news time and time again with ConnectWise, SolarWinds, and Kaseya (which was eventually claimed as a zero-day), but they aren’t just a potential breach of source. They’re far more nuanced and abstract (depending on the interpretation). To confound matters, there really isn’t a single, agreed upon definition. A supply chain attack isn’t just an exploit of source, it’s an exploit of the whole pipeline by exploiting a piece of the process which can have staggering ramifications for security down the entire chain.… Read the rest