New Supply Chain Attacks Using "Island Hopping"

Supply chain attacks are getting more prevalent and dangerous says the latest quarterly Global Incident Response Threat report from cybersecurity firm Carbon Black.  Half of current cyberattacks use “island hopping” as an approach, which means attackers are after not only the target network but all those along its supply chain as well, the report states.


Industries most targeted by island hopping are financial (47 per cent), manufacturing (42 per cent) and retail (32 per cent) according to Carbon Black.


Tom Kellermann, Carbon Black’s chief cybersecurity officer, said attackers are using their victim’s brand against customers and partners of that company. “They’re not just, say, invading your house – they’re setting up shop there, so they can invade your neighbours’ houses too.”


The report is based on a survey of 40 Carbon Black incident response partners and offers actionable intelligence for business and technology leaders, supported by analysis of the newest threats and advice on how to stop them.


According to the report, the main reason organisations are vulnerable to island hopping is a lack of visibility, which 44 per cent of respondents named as the top barrier to incident response, up from 10 per cent the previous quarter.


“More often than not, the adversary is going after the weakest link in the supply chain to get to their actual target,” said Thomas Brittain, who leads Carbon Black’s Global IR Partner Program. “Businesses need to be mindful of companies they’re working closely with and ensure those companies are doing due diligence around cybersecurity as well.”

more news

Varonis Blog Highlights 110 Cybersecurity Statistics


Cybersecurity company Varonis has issued its predictions for the forthcoming year with a blog post entitled 110 Cybersecurity Statics For 2020. The blog states that cybersecurity issues are becoming a day-to-day struggle for businesses. Recent trends and cybersecurity statistics reveal a huge increase in hacked and breached data from sources that are increasingly common in the workplace, like mobile and IoT devices.

read more

UK To Go On The Cyber Offensive


The UK Government is about to launch a new proactive and offensive cybersecurity team that will wage cyberwarfare against hostile nation-states and online crime organisations. It would be naive to believe that the UK has not launched cyberattacks against third parties, but the killing of Qassem Soleimani has brought this out into the open.

read more

Are You Ready For Iranian Revenge Cyberattacks?


Following the killing of Qassem Suleimani no-one can be sure of what military action Iran will take, but experts agree that its cyberattacks will increase against countries and governments it sees as hostile.

read more

Ringing The Changes For IOT Security


Buying and installing a cyber-doorbell through which you can monitor callers even if you are away from home makes sense, yes? Not unless you are a user from Alabama who has launched a $5million legal against action after it is alleged that a hacker cracked the Ring doorbell and started harassing the family.

read more