Security News > 2022 > September > Supply chain risk is a top security priority as confidence in partners wanes
As cyber attackers increasingly look to capitalize on accelerating digitalization that has seen many enterprises significantly increase their reliance on cloud-based solutions and services as well as third-party service providers, software supply chain risk has become a major concern of organizations.
Seventy-nine percent of security professionals responding to a recent survey conducted by the Neustar International Security Council indicated that their organization's reliance on cloud-based solutions has increased from pre-pandemic levels, with 48% saying their reliance has "Greatly increased." Similarly, 78% said their reliance on cloud-based services has increased, and 66% reported that their reliance on third-party services providers has increased.
As a result, 76% of respondents said they now view supply chain risk as a top security priority.
Security professionals continue to express concern about increased risk due to closer integration with third-party partners.
73% of survey respondents believe they or their customers are exposed to some degree of security risk as a result of this integration, and 77% say they have increased the rigor of their due diligence process for external partners as a result of the Log4j vulnerability and recent attacks against service providers such as SolarWinds and Kaseya.
"Enterprises are recognizing that they need to not only optimize their own security measures by adopting a proactive security-by-design strategy - which includes an 'always on' approach to cybersecurity - but to invest more in supply chain auditing as well. While digitization brings undeniable business benefits, it's worth remembering that any organization is only as secure as the least secure partner in its supply chain."
News URL
https://www.helpnetsecurity.com/2022/09/05/software-supply-chain-risk/