Virtually all of the recent high-profile disruptions to the supply chain can be traced back to nation-states rather than hacking groups operating completely on their own, according to Bitsight President and CEO, Tom Turner. Supply chain risk management was historically the domain of the financial services industry, who typically had established practices in the area, he said. But activity nowadays is more and more about targeting a nation rather than targeting a vertical, Turner said, and companies are realizing that their supply chain or vendor network is often the easiest entry point for a hacker regardless of industry focus. A sovereign ratings platform allows government officials and national security agencies to better monitor critical infrastructure for risk exposure, Turner said. The nation-state embrace of supply chain attacks means that countries need to be more focused on protecting their power suppliers, civil capabilities, and important businesses, according to Turner.
