In 2024, the software supply chain has faced attacks at a minimum rate of one every two days. Research from Cyble shows that while software supply chain attacks are increasing across the globe, the United States was the most targeted country. Other common targets include the United Kingdom, Australia, Germany, India and Japan.
Within a six month period (February to mid-August 2024) the research found 90 claims of successful attacks against supply chains. IT providers faced the most supply chain breaches (30 breaches) at one-third of all attacks. Other frequently targeted sectors include:
- Technology products (14 breaches)
- Aerospace & defense (9 breaches)
- Manufacturing (9 breaches)
- Healthcare (8 breaches)
Due to the multiplication factor on downstream victims, supply chain software attacks can have a unique impact. Security leaders are encouraged to vet vendors and service providers before partnering with them to protect against the ramifications of such incidents.