• Skip to primary navigation
  • Skip to main content
  • Skip to footer
Logo of Agilient Security Consultants, Australia

Agilient Security Consultants Australia

Cybersecurity & Risk Management Specialists

Menu
  • Home
  • Industries
      • Aviation
      • Defence & Defence Industry
      • Government
      • Health & Hospitals
      • Corrections and Detention
      • Maritime
      • Aged Care Facilities
      • Mining, Oil & Gas
      • Public Venues & Events
      • Rail
      • Research and Education Industry
      • Telecommunications
      • Utilities
    • advice-colleagues-communication-newIndustries
  • Services
      • Cybersecurity
      • Protective Security
      • Business Resilience
      • Building Security Consultants
      • Security Audits
      • Pandemic Planning
      • Electronic Security
      • IT Disaster Recovery Plan
      • Security Consultants
      • CCTV and Security Cameras
      • Duress Alarms
      • Security Risk Assessment Consultants
      • Managed Security Service Provider
      • Protection against Vehicles as a Weapon
    • training-1Services
  • Solutions
    • banner-menuUnisys Solutions
    • CTO-Blog-110619-Header-GraphicLookingGlass Solutions
    • menu-bg-2Dell Technologies (RSA) Solutions
    • Sightline-Visualization-menuSightline Solutions
  • Resources
    • menumanagers-dealing-customer-agreTraining
    • working-together-newJoin The Tribe
    • Webinars_3-1.jpgUpcoming and Past Events
    • hacking-detected-shutterstock_newResources
  • Articles
  • About
    • About Us
      We are an Australian owned and operated security company specialising in risk, cybersecurity, protective security, crisis and business continuity management services.
    • frequently-asked-questions-smallFAQ’s
    • bg-menu-government-institutionsConsultant Registration
  • Contact Us
Contact Us

Supply Chain and Cybersecurity

You are here: Home / Security News / Supply Chain and Cybersecurity

Supply chains are coming under increasing attack, yet many enterprises and vendors remain poorly prepared to prevent or detect growing supply chain cyber-risks.

A supply chain attack occurs when someone infiltrates your system through an outside partner or provider with access to your systems and data.

The Target US breach of 2014 saw 70 million personally Identifiable Information records and approximately 40 million credit card records stolen in an attack via an unsecured HVAC supplier link for “billing and contractual services only”.

And Equifax suffered the most damaging breach in history after failing to patch an exploitable vulnerability in third party software. The hacker stole the credit reference data of 143 million clients, including verified employment documents and social security information.

How does this happen?

Software vendors are increasingly building on other pre-built components to complete their projects rather than building from scratch to shorten development time, although not necessarily knowing what is in the components, thus incorporating any insecure coding in the component into their own product.

“Watering hole” style attacks are attacks on product update delivery mechanisms. Whether it’s corrupting the update, spamming links to impersonation pages, DNS poisoning or click-jacking an update website, these attacks introduce malware users are unaware of.

What can be done?

Organisations need to be aware that cybercriminals are increasingly abusing “trusted” supplier links or sites to deliver their malware into well protected organisations.  In addition, software supply chains need to be secured.

Agilient have experienced and highly skilled cybersecurity consultants to conduct security reviews of your and your supplier’s organisations, and provide a natural language report on any issues and advice remediation measures for the risk levels discovered.

Contact us to find out how we can assist your organisation.

Author: David Steele, Agilient Consultant

Tweet
Share

General,  Security News cyber attack,  cybercriminals,  cybersecurity,  cybersecurity review,  data breach,  Equifax,  security review,  supply chain,  supply chain security,  Target breach

Looking for a security partner? Get in touch with Agilient.

Looking for practical and cost-effective security and risk solutions for your government department, agency or company? Speak with Australia’s leading senior security, risk and resilience experts.


Looking for a pandemic planning partner? Get in touch with Agilient.

Looking for practical and cost-effective risk management solutions for your government department, agency or company? Speak with Australia’s leading senior risk and emergency management experts.



Footer

Agilient is a proud member of

Ai Group Defence Council
Australian Industry & Defence Network
Australian Security Industry Association
Sydney Aerospace & Defence Interest Group

Company and Licensing Details:

ABN: 37 157 911 441
NSW Security Master Licence # 410783087
ACT Security Master Licence # 17502184
Vic Security Registration # 878-460-40S
Qld Security Firm Licence # 3834422

Join The Tribe

Sign up to receive our regular Agilient newsletter including the latest security, risk and resilience updates

Sign up now

Copyright © 2022 Agilient – Level 14, 275 Alfred St, North Sydney NSW 2060 Australia – 1300 341 692