Supply Chain Cyberattacks. What You Need to Know to Protect Your Wichita Business

Netability • July 26, 2022

Any cyberattack is dangerous, but the particularly devastating ones are those on supply chain companies. These can be any supplier – digital or non-digital – of goods and services.

We’ve seen several attacks on the supply chain occur in 2021 that had wide-reaching consequences. These are “one-to-many” attacks where victims can go far beyond the company that was initially breached.

Some recent high-profile examples of supply chain attacks include:

  • Colonial Pipeline: A ransomware attack caused this major gas pipeline to be shut down for nearly a week.
  • JBS: The world’s largest supplier of beef and pork products was hit with ransomware that caused plants in at least three countries to shut down for several days.
  • Kaseya: This software company had its code infected with ransomware , which quickly spread to IT businesses that used its products and to roughly 1,500 of their small business customers. 

Why do you need to be worried about supply chain attacks even more so than in the past? Because they’ve been growing and are expected to continue this trajectory.

Supply chain attacks rose by 42% during the first quarter of 2021. A surprising 97% of companies have been impacted by a breach in their supply chain, and 93% suffered a direct breach as a result of a supply chain security vulnerability.

If you’re not properly prepared, then you can be impacted by a breach of software you use or have a vital service or goods supplier go down for several days due to a cyberattack. 

As part of any good business continuity and disaster recovery strategy, you should look at supply chain risks in light of the current increase in attacks and formulate a plan.

How Can Your Wichita Business Mitigate Risk of Losses Due to an Attack on Your Supply Chain?

Identify Your Supplier Risk

You can’t fix what you don’t know is wrong. So, you need to begin by shedding some light on your risk should one of your vendors get hit with ransomware (the current attack of choice on the supply chain) or another type of breach.

Make a list of all your vendors and suppliers, both for goods and services. This includes everything from the cloud services you use to the company that supplies your office products or any raw materials you may use in a product you sell.

Review these vendors to identify their cybersecurity risks. This is something you may need some help with from your IT partner. We can work with you to review vendor security or send them a survey to find out where they stand as to their cybersecurity, and then determine how much that may leave you at risk as one of their customers.

Create Minimum Security Requirements for Digital Vendors

Come up with some minimum security requirements that you can use as a benchmark with your vendors. One way to make this easier is to use an existing data privacy standard as your requirement. 

For example, if a vendor is GDPR compliant , then you know they’ve adopted several important cybersecurity standards that protect their business, and yours, from an attack.

Do an IT Security Assessment to Learn Where You’re Vulnerable

If the software you use had a vulnerability that was exploited by hackers to take over a system, how much does that leave your systems at risk? Do you have a regular patch application strategy in place to ensure any software updates are applied right away?

You should have an IT security assessment done if you haven’t done one in over a year. This will help you identify how strong your systems would be at preventing a breach or ransomware infection that was coming from a digital supply chain vendor.

Put Backup Vendors in Place Where Possible

If you sell widgets and have a single supplier for one specific part needed for that widget, you’re at a much higher risk of downtime than if you had two suppliers of that part.

If a key vendor of yours is attacked and can’t fill orders or provide services for a week or more, how will that impact your business? This is what you want to consider when setting up backup vendors.

For example, most companies would consider themselves down and not able to operate without their internet. Having a backup internet service provider can help you avoid lengthy downtime should your main ISP go down.

Look at putting this type of safety net in place for all vendors that you can.

Ensure All Data Kept in Cloud Services is Backed Up in a 3 rd Party Tool

Microsoft recommends in its Services Agreement that customers back up their cloud data that is kept in its services (such as Microsoft 365). The policy states, “We recommend that you regularly backup Your Content and Data that you store on the Services or store using Third-Party Apps and Services.”

You should have a backup (in a separate platform) of all data that you store in cloud services, so you’ll be protected in case of a ransomware infection or other data loss or service loss incident.

Schedule A Supply Chain Security Assessment

Don’t be in the dark about your risk. Schedule a supply chain security assessment to learn where you could be impacted in the case of a cyberattack on a supplier.

This Article has been Republished with Permission from The Technology Press.

By Netability September 17, 2024
There is no escaping the relentless march of AI. Software companies are rapidly incorporating it into many business tools. This includes tools like Microsoft 365, Salesforce, and others. Many people are still concerned about where AI will go. But there is no denying that it makes certain work more efficient. It can generate custom images… The post 9 Smart Ways for Small Businesses to Incorporate Generative AI appeared first on Netability.
A blue circle with a padlock in the middle and the words `` cyber security '' around it.
By Netability September 17, 2024
Cybercriminals can launch very sophisticated attacks. But it’s often lax cybersecurity practices that enable most breaches. This is especially true when it comes to small and mid-sized businesses (SMBs). Small business owners often don’t prioritize cybersecurity measures. They may be just fully focused on growing the company. They think they have a lower data breach… The post 10 Biggest Cybersecurity Mistakes of Small Companies appeared first on Netability.
By Netability October 17, 2023
Let’s dive into a topic that might give you the chills—cybersecurity skeletons in the closet. You may not have old skeletons hidden away in the basement. But there’s a good chance of cybersecurity vulnerabilities lurking in the shadows. Just waiting to wreak havoc. You can’t fix what you can’t see. It’s time to shine a… The post Does Your Business Have Any “Cybersecurity Skeletons” in the Closet?” appeared first on Netability.
By Netability October 10, 2023
Software-as-a-Service (SaaS) has revolutionized the way businesses operate. It offers convenience, scalability, and efficiency. No more dragging software from one device to another. Everyone can collaborate easily in the cloud. But alongside its benefits, SaaS brings with it potential threats. When software and data are online, they’re more vulnerable to attacks. One of the latest… The post What Is SaaS Ransomware & How Can You Defend Against It? appeared first on Netability.
By Netability October 3, 2023
As technology continues to advance, so does the need for heightened awareness. As well as proactive measures to safeguard sensitive information. Cybersecurity can seem like an insurmountable task for everyday people. But it’s not only a job for the IT team. Everyone can play a part in keeping their organization’s data safe. Not to mention… The post Cybersecurity Awareness Month: Strengthening Your Team’s Defense with Essential Cyber Hygiene appeared first on Netability.
By Netability September 26, 2023
Endpoint management has changed a lot over the last two decades. There was a time when companies housed all endpoints in the same place. This made managing them simpler. But it held offices back from being mobile and flexible. Today’s office can include endpoints around the globe. Remote teams can work from anywhere. And people… The post Should Your Business Upgrade to the New Microsoft Intune Suite? appeared first on Netability.
By Netability September 12, 2023
Cybersecurity threats are becoming increasingly sophisticated and prevalent. In 2022, ransomware attacks jumped by 93%. The introduction of ChatGPT will only increase the potential damage of cyber-attacks. Protecting sensitive data and systems requires a comprehensive approach. One that goes beyond a single security solution. This is where a defense-in-depth cybersecurity strategy comes into play. In… The post 7 Advantages of Adopting a Defense-in-Depth Cybersecurity Strategy appeared first on Netability.
By Netability September 5, 2023
Remote work has become increasingly popular in recent times. It provides flexibility and convenience for employees. Additionally, telecommuting reduces office costs for employers. Many also cite productivity benefits due to fewer distractions. Research shows a 56% reduction in unproductive time when working at home vs. the office. But there are some drawbacks to working outside… The post Top 7 Cybersecurity Risks of Remote Work & How to Address Them appeared first on Netability.
By Netability August 29, 2023
In today’s digital landscape, cybersecurity threats continue to evolve. They pose significant risks to individuals and organizations alike. One such threat gaining prominence is zero-click malware. This insidious form of malware requires no user interaction. It can silently compromise devices and networks. One example of this type of attack happened due to a missed call.… The post What is Zero-Click Malware? How Do You Fight It? appeared first on Netability.
By Netability August 22, 2023
In today’s ever-evolving digital landscape, small businesses have more opportunities than ever. Many of these call for leveraging technology to their advantage. Embracing the right tech trends can help businesses compete. It enables them to streamline operations, enhance customer experiences, and fuel growth. But it can be confusing knowing which routes to take. Most small… The post These 5 Small Business Tech Trends Can Fuel Your Growth appeared first on Netability.
More Posts