What I Learned This Week

Software supply chain attacks are highly destabilizing to the tech trust model, and they are increasing. Will this become another pressure to deglobalize?

The digital technology that sits at the heart of our most trusted and important transactions has become incredibly global and incredibly complex. While hardware-supply-chain tampering is possible (see WILTW October 18, 2018), it is the software and connectivity of devices that is most likely to be exploited by hostile actors. Software is often written by development teams spread-out across the globe. Moreover, software is subject to constant updates and revisions in order to add new features, correct existing bugs, and to secure it against the latest threats. These updates are almost always carried out automatically, often without knowledge of the end user, and from remote update servers v…

Want to read more?

Subscribe Today

Already a subscriber? Login here.