Protecting Supply Chains against Cyber Attacks

Recent studies estimate that one in four organizations will experience a breach during 2017.

September 21, 2017
Dan Cser
ICAT Logistics Inc.
Dan Cser headshot 59c4077ec4a0c

The impact that technology has had on supply chain efficiency and productivity over the last decade is stunning—but progress has come to some with a heavy price. Without air-tight security and vigilance, the software that is revolutionizing the industry is also opening new opportunities for hackers. 

Recent studies estimate that one in four organizations will experience a breach during 2017. That rate may be even higher for supply chain organizations, where studies also show that as many as 80 percent of cyberattacks originate. Yet, despite their vulnerability, few supply chain managers establish a robust alignment with IT and cybersecurity teams working in or alongside their organizations.

Cyber threats are a growing concern in every business, but it stands to reason that supply chains would be especially vulnerable given their complex relationships with employees, clients, shippers, transporters, plant operations, and the uncontrolled who-knows-what software and security procedures that are in use along the chain. Even when isolated, sloppy security procedures or lax employee training can put the entire organization and its data in jeopardy.

Within the past three or four years, some of the nation’s largest companies have been breached successfully—Samsung, Home Depot, Target, Walmart, Neiman Marcus, Yahoo and JP Morgan Chase Bank, to name a few. Those are companies with considerable IT talent.

So you ask yourself. Without those big guns, how do we protect ourselves, our clients and our suppliers against sophisticated hacking techniques and new malware that is freshly refined with each attempt made to foil it?

No approach is foolproof, but there are a number of steps that will help secure the data and enhance the communication that is essential for doing business in the current environment.  Even if yours is a small or midsize company, you can reduce the odds or at least the intensity of a major data breach.

Set Protocols: In concert with your IT specialists or data security contractor, set down in writing a meticulous set of standards that will ensure every member of the supply chain has clear direction for handling email, purchasing and using software, discussing company business, and storing and sharing data. Reinforce those standards through the ongoing support of leaders from each part of the chain.

  • Teach Compliance: Offer compulsory training that emphasizes the importance of adhering to the policies that have been agreed upon by the supply chain team. Most data breaches are caused when compliance rules are inadequate or are overlooked.
  • Network Security Standards: Institute regular communication with major suppliers and clients so that security standards are consistent along the entire supply chain. A cyberattack that succeeds along any point in the supply chain has the capacity to interfere with the entire chain by disrupting business and causing uncertainty and dissention. Where possible, apply system technologies across the network.
  • Vet Vendors:  Against standards that you have created with your data security advisers, institute a vendor vetting process before approving any new supplier, and review each vendor annually with an eye toward their willingness to cooperate with prescribed security standards.

Respond Quickly: If or when a cyberattack occurs, the faster your organization responds, the more likely you will mitigate a widespread loss of or damage to records. 

  • Establish or contract with an incident response team whose members are skilled at cyber war and will act without hesitation to identify and quell an attack.
  • Establish a communications plan that prepares you for quickly informing others along the supply chain that a breach has occurred and that action is being taken, so that they can also respond and limit the extent of the breach by executing quick password resets and credentials.
  • Share your findings and response techniques with all along the chain.

Budget for Cyber Security: Besides building stronger IT teams or contracting with vendors whose specialty is cyber security, consider investing in advanced employee training and cyber liability insurance to help prepare and protect you in case of a breach or stolen information.

The security of any organization that is part of a supply chain is only as strong as the weakest member of the chain. Breaches are most frequently the result of human error, and hackers know it. They will prey on the laxity of anyone along the supply chain who is unfamiliar or noncompliant with security protocols. Regular training is essential in every organization, no matter its size or industry. 

Cyber security is a team sport, and the competition can be brutal. If you are in business, you need to play hard to protect your clients’ data.  

There is risk in every business, but with planning, communication and cooperation, you can help limit the risk of exposing your supply chain to cyber breaches by maintaining standards that are followed without exception by every member of the team.


Related
A Duie Pyle
A. Duie Pyle Hit by Ransomware Attack
June 18, 2019
Getty Images 867128702
Vast Exposure of Supply Chain Risk
March 27, 2019
Computer Hand Keyboard 34203
ASUS Users Hit by Supply Chain Attack
March 26, 2019
Cyber Security Cybersecurity Device 60504
Cyber Attack Highlights Fragile Supply Chain
March 20, 2019
Recommended
Women In Supply Chain Vertical Color
Nominations Close June 7 for 2024 Women in Supply Chain Award
This award recognizes female supply chain leaders and executives whose accomplishments set a foundation for women in all levels of a company’s supply chain network. Submissions close June 7!
April 1, 2024
Adobe Stock 323829328
Alexis Asks: The Surge of E-Commerce Shipping
Managing editor Alexis Mizell-Pleasant asks industry experts about various topics developing in the supply chain field. Strategies that implement efficiency enhancing tools will be the ones to keep up in the coming years.
April 12, 2024
Adobe Stock 207220202
SCN Summit: State of the Supply Chain
June 4, 2024
Register
Register now to hear from experts about the State of Today’s Supply Chains through topics revolve around Warehouse Automation, Generative AI, Automation, Electrification, Company Culture and more.
Latest
Adobe Stock 364357187 (1)
Dow Jones Risk & Compliance Deploys Generative AI to Transform Due Diligence
Dow Jones Integrity Check is a fully automated solution that goes beyond screening to identify risks and red flags from thousands of data sources.
April 9, 2024
Adobe Stock 508660919
Alexis Asks: Pricing Strategy in the Face of Inflation
Managing editor Alexis Mizell-Pleasant asks industry experts about various topics developing in the supply chain field. When it comes to economic pitfalls, technology and established networks might hold the greatest power.
April 5, 2024
Baltimore Bridge Christine Adobe Stock 769092028
Container Traders Anticipate Rise in Disruptions and Increase in Container Prices
In the aftermath of the Baltimore bridge collision, supply chain professionals are anticipating price hikes, as indicated by a significant rise in sentiment for container price increases released by Container xChange.
April 3, 2024
Pexels Stock Cybersecurity
Avetta Acquired by Private Equity Firm
EQT Private Equity acquired Avetta from Welsh, Carson, Anderson & Stowe, leveraging its global footprint, purpose-driven approach, and digital and sustainability expertise to support Avetta's ongoing growth journey.
April 3, 2024
Robert Paulus Adobe Stock 599970934
Biden-Harris Final Rule on Train Crew Size Safety Requirements to Improve Rail Safety
The new rule enhances safety in the rail industry by generally requiring and emphasizing the importance and necessity of a second crewmember on all trains.
April 2, 2024
Adobe Stock 364357187
It’s Time to Depart from the Binary Pass-Fail Metrics of Standard Compliance Testing
Brands that prioritize user-centric experiences set a higher standard, standing out with superior quality, functionality and durability.
April 1, 2024
Sittinan Stock adobe com
Descartes Strengthens Global Trade Intelligence with OCR Acquisition
Descartes Systems Group acquired OCR Services, Inc. for $90 million.
March 29, 2024
Adobe Stock 526136148
Alexis Asks: The Impact of the Francis Scott Key Bridge Collapse
Managing editor Alexis Mizell-Pleasant asks industry experts about various topics developing in the supply chain field. Eyes have shifted quickly with questions about the implications this catastrophe may have for shippers.
March 28, 2024
Dali Zapper Adobe Stock 450977438 Editorial Use Only
How Baltimore Bridge Collapse Impacts Movement of Vehicles, Raw Materials and More
While the full extent of the impact is yet to be determined, the collision is likely to have far-reaching consequences for the Port of Baltimore and its role in the regional and national economy.
March 27, 2024
Adobe Stock 241274431
Utilizing ML Models for Cargo Insurance in the Wake of the Red Sea Crisis
Machine Learning risk pricing models offer a transformative solution, enabling insurers to adapt dynamically to changing conditions, enhance accuracy in risk assessment and provide real-time monitoring.
March 26, 2024
Adobe Stock 475597494
Alexis Asks: The Supply Chain Impact of Canada's Modern Slavery Act
Managing editor Alexis Mizell-Pleasant asks industry experts about various topics developing in the supply chain field. Canada's strides in labor laws wield significant influence in shaping ethical supply chains.
March 25, 2024
Adobe Stock 476558953
Digitizing Supply Chains for Enhanced Due Diligence and Trade Compliance
In an era of rapid globalization, utilizing global trade technology is not just a convenience but a strategic necessity for companies aiming to stay competitive, efficient and ESG conscious in the global marketplace.
March 23, 2024
Adobe Stock 396129298 (1)
5 Tips to Prevent Cargo Theft
Through close collaboration, open communication and intelligent planning, you can do your part to help make freight transportation safer for everyone.
March 22, 2024
Adam121 Adobe Stock 315095274
Partner Risk Insights Platform to Help Businesses Digitize Third-Party Risk Management
Aon plc launched Partner Risk Insights, a digital platform powered by CoverWallet to help U.S. organizations simplify the way they manage insurance-related third-party risk.
March 18, 2024
Quality Stock Arts Adobe Stock 507033815
Real-Time Document Collaboration
ETQ released the ETQ Reliance NXG quality management system, which includes real-time document collaboration using Microsoft 365, expanded data collection capabilities and user interface features for a better user experience.
March 18, 2024
Img 9232
Rock Stars of the Supply Chain and Pros to Know: Container Maintenance, Marino Group's David Miller Talks Worker Safety
David Miller, senior director of Container Maintenance Corporation and The Marino Group, was named one of our Rising Star award winners from this year’s Rock Stars of the Supply Chain award and Pros to Know award.
March 13, 2024
Adobe Stock 140651663
Digital Tools Create the Traceability Mandated by New Supply Chain Laws
Committing to traceability solutions is a strategic necessity, pivotal for adhering to new regulations but also for defining a brand’s values in a market that increasingly prizes transparency and ethical practices.
March 11, 2024
Sculpies Adobe Stock 244001622
Shipping Industry Better Prepared for Disruption: Study
The container shipping industry showed resilience in 2023 amid continued waves of disruption, with financial health strengthening even amid declining revenues, revenue pressure, geopolitical strife, and challenging capital markets.
March 5, 2024
Adobe Stock 587253286
Maintaining Supply Chain Integrity Throughout the Supplier Lifecycle
By incorporating clear communication, monitoring, data-driven decision-making and adaptability, organizations can successfully navigate the complexities of the supplier lifecycle.
February 25, 2024
Adobe Stock 150191362
Sovos Offers Compliance Cloud to Navigate Regulations
Sovos launches the Sovos Compliance Cloud that unifies tax compliance and regulatory reporting software in one platform and provides a holistic data system of record for global compliance.
February 22, 2024
Port Of Long Beach
Biden-⁠Harris Initiative to Bolster Cybersecurity of U.S. Ports
The Biden-Harris Administration will issue an Executive Order to bolster the security of the nation’s ports, strengthen maritime cybersecurity, fortify supply chains and strengthen the U.S. industrial base.
February 21, 2024
Parradee Adobe Stock 576568554
AI-Powered Supply Chain Management Platform
Inspectorio released the Inspectorio Supply Chain Management Platform, an end-to-end supply chain solution that uses artificial intelligence (AI) to provide a holistic view of supply chain operations, risks, and opportunities for optimization.
February 21, 2024
Satoshi Kina Adobe Stock 171085788
AccuWeather Predicts "Super-Charged" Hurricane Season in 2024
While the Atlantic hurricane season does not officially start until June 1, there are already “serious and growing concerns” about the impending season, according to AccuWeather chief meteorologist Jonathan Porter.
February 20, 2024
Adam121 Adobe Stock 315095274
Supply Chains Experience Sharp Rise in Ransom Demands: Study
Insights from an Arctic Wolf report reveal a year filled with cybercrime groups significantly increasing ransom demands, continuing to exploit well-known vulnerabilities that pre-date 2023.
February 20, 2024