Most companies depend on a variety of external vendors and partners to support their business activities, which in turn has created a complex interdependent relationship of third-party ecosystem known as the supply chain. Because of its complexity, this supply chain ecosystem has unfortunately been creating an attractive target for cybercriminals due to supplier vulnerability.

In recent times, a growing number of breaches are being attributed to supplier vulnerabilities. In January 2019, Managed Health Services of Indiana announced that a phishing attack against a transportation vendor resulted in personal data of 31,000 patients being stolen. More recently, Wipro, one of the largest technology service suppliers in the world, was infiltrated in order to attack their customers. And in this attack as well, the entry point was a phishing scam targeting Wipro employees, whose accounts were then weaponized against retail customers as part of a gift card fraud scheme.

While the security industry has made significant progress thwarting generalized email attack campaigns, more directed impersonation and business email compromise (BEC) attacks are harder to detect and are increasing in virulence. And given that email impersonating a trusted business partner is more likely to trick the target into taking an unauthorized action, it’s time to shine more light on the supply chain ecosystem as an abuse vector and set up strategies and tools to help mitigate the risks they pose.

The Improving Visibility to Mitigate Security Risk DigiConnect virtual boardroom will bring together Chief Technology Officers, Chief Information Security Officers, Chief Operating Officers, Vice Presidents, Directors of IT, Heads of Cybersecurity, Heads of Risk Compliance, Head of Business Continuity from different enterprise and industry sectors in the Middle East region to discuss these challenges and explore latest innovation, tools and techniques available that can help provide visibility and control over the supply chain communication.