TECHNOLOGY
62 freeware utility CCleaner led to at least 18 other companies being targeted in one campaign . Fortunately , on this occasion , the attack was quickly exposed and counteracted , but it still set a precedent for future supply chain attacks .
Many organisations are now placing greater emphasis on internal cybersecurity measures , as demonstrated by the fact that cybersecurity and risk management is second only to IT automation when it comes to priority initiatives that organisations are planning to invest further in during 2019 . With high profile cyberattacks often a daily occurrence in the media , more organisations are viewing data breaches and the protection of personal data as an important part of business risk . This is encouraging news , however , within a complex supply chain it is possible that security can potentially be compromised by just one supplier that has left a hole in their defences . While no organisation is immune from cyberthreats , effective supplier management in terms of thoroughly screening new suppliers , vetting practices and procedures , limiting access to data and undertaking frequent security auditing ,
“ IT ’ S IMPORTANT FOR ORGANISATIONS TO TAKE CONTROL OF SECURITY AUDITING , AND UNDERSTAND WHAT DATA SUPPLIERS HOLD ON FILE , WHERE IT IS STORED AND WHO HAS ACCESS TO IT ”
— Alan Calder , Chief Executive of GRC International plc
JULY 2019