How to ensure supply chains are cyber proof and secure

By Ed Bradley, Founder and Director, Virtualstock

Covid-19 has caused unprecedented disruption to supply chains, particularly during the peak of the pandemic when critical products were in high demand. 

Often in desperation to meet demand, many organisations turned to new suppliers they had never worked with before, exposing many flaws and vulnerabilities in the security of supply chains, not least the cyber threat. 

Whilst larger organisations have invested heavily in recent years to boost their defences, smaller companies supplying larger organisations have fewer resources to invest in protection from cyber attack.

Cyber criminals, aware of this, have looked at other ways to compromise their targets and supply chains have come under frequent attacks, ever more sophisticated and devasting. 

One of the major themes that has emerged from the pandemic is that companies are being held far more accountable for the security and standards of their supply chain.

Albeit not a cyber related issue in its supply chain, one major pureplay came under stinging attack for working with suppliers who had been accused of exploiting workers. It was clear from that, that the fallout, backlash and reputational damage from a cyber hack or question marks over the ethics of a supply chain can be severe. 

There are practical, easy to implement and low-cost solutions which can be deployed to prevent such risks and improve the overall security of the supply chain. The starting point for companies is to adopt a threat-led and risk-based approach to cyber security by better understanding the specific threats and vulnerabilities their organisation faces.

Companies should look to assess their infrastructure and identify their key assets and security controls. They should anticipate the security incidents they are most likely to face based upon the risk profile and prepare accordingly. 

The other key area is infrastructure. Companies need to ensure they are using the latest versions of software on their internet facing infrastructure. They need to assess which ports are open on the estate, and whether there is a business requirement for these to be open and ensure appropriate authentication controls are in place.

The last step is to track certificate expiry dates, to ensure those on your website are in date and issued by a trusted authority. There is another piece around credentials. It is important that employees are educated on the potential threats associated with using their professional email accounts on third-party sites. They should be informed of the importance of using unique passwords across separate accounts.

By taking some of these steps outlined above to secure the supply chain, which doesn’t require heavy investment into more complex and expensive solutions, it will help mitigate against cyber threats and improve overall security.

Featured
Retail data brand Reapp adds Waitrose & Partners to list of major UK retailers available on its AI driven platform
Retail data brand Reapp adds Waitrose & Partners to list of major UK retailers available on its AI driven platform

Continue reading…

Including Wonder, mmERCH, and Pandion: ten retail technology funding rounds you need to know about
Including Wonder, mmERCH, and Pandion: ten retail technology funding rounds you need to know about

Continue reading…

Retail Technology Show 2024: drop by the RTIH stand, and register for our After Hours Drinks event on day one
Retail Technology Show 2024: drop by the RTIH stand, and register for our After Hours Drinks event on day one

Continue reading…

Rohlik Group invests in automation technologies as AutoStore powered warehouse goes live in Berlin
Rohlik Group invests in automation technologies as AutoStore powered warehouse goes live in Berlin

Continue reading…

Martyn Jones departs VoCoVo to join Click and Collect specialist Clix Technology as its new CEO
Martyn Jones departs VoCoVo to join Click and Collect specialist Clix Technology as its new CEO

Continue reading…

Taking flight: Amazon announces that its drone delivery service is coming to Arizona in late 2024
Taking flight: Amazon announces that its drone delivery service is coming to Arizona in late 2024

Continue reading…

Subscription management and billing platform Recurly appoints Lina Tonk as Chief Marketing Officer
Subscription management and billing platform Recurly appoints Lina Tonk as Chief Marketing Officer

Continue reading…

Focus on automation and sustainability as home furnishing retailer JYSK preps new DC in Lelystad, Holland
Focus on automation and sustainability as home furnishing retailer JYSK preps new DC in Lelystad, Holland

Continue reading…

Marks and Spencer hands Brits the chance to give pre-loved clothing a second life via Oxfam postal donation tie up
Marks and Spencer hands Brits the chance to give pre-loved clothing a second life via Oxfam postal donation tie up

Continue reading…

American footwear brand G.H. Bass taps ReaLift tech for launch of online scanning solution in Europe
American footwear brand G.H. Bass taps ReaLift tech for launch of online scanning solution in Europe

Continue reading…

Supply chainStaff WriterSupply chain, Cybercrime, Coronavirus outbreak, COVID-19, Virtualstock, Online retailComment