What are the Consequences of a Software Supply Chain Attack?
Software supply chain attacks can be devastating.
The formula is simple. A bad actor compromises a technology vendor’s infrastructure and abuses its privileged relationship with customers to access one or more target networks.
Once inside, the actor gradually expands its presence and capabilities by moving through the network and installing malicious software.
But what could the consequences be?
Two (of Many) High-Profile Software Supply Chain Attacks
The consequences of a software supply chain attack depend on the bad actor’s motive, resources, and skill. Common motives include extortion, data theft, espionage, and sabotage.
For private organizations, the cost of investigating, resolving, and recovering from software supply chain attacks can be crippling. However, the real consequences of software supply chain attacks can be far more dangerous.
High profile examples of these dangers include:
Lockheed Martin—in 2011, three U.S. military contractors (including Lockheed) were infiltrated using multi-factor authentication codes stolen from (Read more...)
*** This is a Security Bloggers Network syndicated blog from Cimcor Blog authored by Jacqueline von Ogden. Read the original post at: https://www.cimcor.com/blog/consequences-of-a-software-supply-chain-attacks
