Third parties have been identified as the source of several significant cyber breaches and are a major target for attackers, introducing additional risks and vulnerabilities into an organization’s environment. You needn’t look far for real-life examples demonstrating the threat they pose.
Take the Target breach for instance, in which cyber-criminals gained access through a third party heating, ventilation, and air conditioning (HVAC) vendor, reaching the retailer’s point-of-sale (POS) payment card readers and collecting millions of credit and debit card numbers, affecting 110 million customers.
Ticketmaster fell victim to a similar attack, when a third party customer support system was compromised, potentially giving cyber-criminals access to personal information and the payment details of two million customers. Read more..