Kali on My Mind

Secure Supply Chains

A Fox Business article (https://www.foxbusiness.com/technology/firms-surveyed-hit-supply-chain-cybersecurity-breach) describes an alarming situation we find ourselves in, and some explanation for current supply chain problems. According to the article 97% of firms surveyed have been impacted by a cybersecurity breach at some point in their supply chain. That is an unacceptably high number if our goal is to conduct business in a timely manner.

Another alarming issue the article raises is that 38% surveyed have no way of knowing if there are any issues with third party suppliers. With more than a third of these organizations having no way to confidently be sure of security it is only a matter of time before they are either exploited themselves or through one of the suppliers they use. This is a ticking time bomb that will eventually go off for each of these organizations.

One of the ways to help prevent this and lower these numbers would be to require all organizations to disclose breaches within a designated period of time. The GDPR takes several steps, this one included, to help identify exploited networks and inform customers and other organizations of possible issues if they are involved with the breached network. This is not asking for much and would be a big step forward for cybersecurity in the United States.