Kaspersky: Supply Chain Attacks are the Most Common Cyber Threat in the World

JAKARTA - Supply chain attacks are now the most common cyber threat faced by global businesses, including in the Asia Pacific (APAC) region.

The latest study from global cybersecurity firm Kaspersky revealed that as many as 31 percent of companies in the world were affected by this attack in the past 12 months.

These attacks tend to target large companies with complex digital ecosystems. On average, large companies manage around 100 suppliers and more than 130 contractors, which expands the potential for security gaps.

Kaspersky said this threat opens up the opportunity for a "trusted relationship" attack, where hackers do not attack the main target directly, but enter through a third party who already has access permission

However, many companies are still underestimating this threat. Only 9 percent of global businesses put supply chain attacks as a top priority, while trusted relationship attacks are only 8 percent.

Managing Director of APAC Kaspersky, Adrian Hia, assessed that the difference in perception of risk between countries could hinder cybersecurity investment, thus increasing vulnerability in the face of increasingly complex threats.

"This underestimation of risk can significantly hinder adequate cybersecurity investments, making organizations more vulnerable than ever as threats continue to grow in scale and sophistication," said Hia.

To reduce these risks, Kaspersky recommends the following:

Thoroughly check your suppliers' cybersecurity policies, including information about past incidents, and compliance with industry security standards Conduct regular security audits, and ensure compliance with the security policies and relevant protocols of your organization Implement security practices such as the principle of least privilege, zero trust, and mature identity management to reduce damage if suppliers experience vulnerabilities Use security solutions to monitor infrastructure in real-time and detect anomalies in software and network traffic Develop an incident response plan, which includes steps to quickly identify and contain breaches Collaborate and strengthen protection on both sides and make it a shared priority

The English, Chinese, Japanese, Arabic, and French versions are automatically generated by the AI. So there may still be inaccuracies in translating, please always see Indonesian as our main language. (system supported by DigitalSiber.id)

Tag: kaspersky