Your Data is Only as Secure as Least Secure Link in Your Supply Chain

Your Data is Only as Secure as Least Secure Link in Your Supply Chain

Data Security DigestThis week we were reminded of how important it is for companies that share data with third parties to better understand the security postures of their partners and to protect their data before it’s shared. In other words, your data is only as secure as the least secure link in your supply chain.

This idea was brought to the forefront when news hit that a third-party vendor data breach exposed payment card information belonging to customers of Delta Airlines; Sears, Roebuck and Company; and possibly additional businesses, according to this article in SC Magazine by Bradley Barth.

A supply chain attack, also called a value-chain or third-party attack, occurs when someone infiltrates your system through an outside partner or provider with access to your systems and data, according to Maria Korolov in her article for CSO. This has dramatically changed the attack surface of the typical enterprise in the past few years, with more suppliers and service providers touching sensitive data than ever before.

In “GDPR and the End of Reckless Data Sharing,” in Security Roundtable, James Staten believes that the impending EU data protection (Read more...)

*** This is a Security Bloggers Network syndicated blog from Blog – Protegrity authored by Michael Maloney. Read the original post at: http://www.protegrity.com/your-data-is-only-as-secure-as-least-secure-link-in-your-supply-chain/