SUPPLY CHAIN ATTACKS - HOW TO PREVENT THEM

Supply chain attacks target an organisation by exploiting vulnerabilities in its third-party vendors or service providers. I would advise managers to do the following to reduce the susceptibility to these types of attacks:

1.    To secure the software procurement process – this includes requiring a SBOM (software bill of materials) for all incoming software as well as blocking any shadow IT which will prevent employees from being able to install unvetted third-party tools.

2.    To isolate and segment third-party footprints – this process can include enforcing a zero-trust system and applying micro-segmentation which involves placing third-party software appliances into isolated network zones to prevent lateral movement during a breach.

3.    To Secure internal development – this stage should consist of using private registries and isolating build environments.

4.    To test the system – to prepare for such attacks and to train employees, managers should conduct supply chain drills which mimic a major vendor compromise to test team readiness and automate patching: maintaining an automated, fast-track patching pipeline specifically for critical internet-facing third-party software.  

5.    To establish quick response protocols – in the case that an attack does occur, creating kill switches which instantly revoke a vendor’s network access will greatly help.

If an IS manager was to conduct all of these operations, as well as taking the suggested precautions, a supply chain attack will have minimum to no effect on the company.