Risk Management Archives

Majority of CISOs Report Third-Party Security Incidents with Compliance and Supply Chain Risk Management Implications

October 2, 2025October 2, 2025 by Thomas Canova

Third-party cybersecurity risk is no longer an emerging concern—it is a documented and escalating threat. A recent SecurityScorecard survey revealed that 71% of organizations experienced at least one material third-party cybersecurity incident in the past 12 months, with 5% reporting ten or more such events. Supporting data from the 2025 Verizon Data Breach Investigations Report … Read more

US Treasury Cybersecurity Breach Highlights Growing Supply Chain Security Threats for 2025

January 8, 2025 by Thomas Canova

A recent cybersecurity breach at the US Department of the Treasury, attributed to a Chinese state-backed actor, has raised serious concerns about supply chain security risks. This incident, which was traced back to vulnerabilities in a third-party remote tech support service, underscores the vulnerabilities of technology supply chains and the growing threat they pose to … Read more

Cybercriminals Continue to Focus on Exploiting Vulnerabilities in the Supply Chain to Gain Backdoor Access to Organizations Systems and Critical Data

September 26, 2024 by Thomas Canova

Cybercriminals and hackers have increasingly exploited vulnerabilities in industry standard IT and security tools, leading to major security incidents. Incidents across multiple market segments highlight how quickly liabilities in widely used management tools can become targets for both state-sponsored groups and ransomware operators, underscoring the importance of safeguarding against supply chain cyberattacks. Certainly, supply chain … Read more

Other Pages

Quick Links