Skip to content
Search AI Powered

Latest Stories

Forward Thinking

Supply chain cybersecurity threats may rise in 2018, warns Booz Allen

Companies could see an increase in cyber threats such as the NotPetya attack, which shut down container shipping giant Maersk.

One of the biggest cybersecurity stories of 2017 was the NotPetya attack, which memorably hit shipping giant A.P. Moller - Maersk, causing it to shut down operations at 76 port terminals in four countries around the world. The attack caused delays and disruptions that lasted weeks and ultimately cost the company more than US$2 million.

According to the consulting firm Booz Allen Hamilton, this type of cyberattack should not be viewed as a one-time fluke. In its "Foresights 2018" special report, Booz Allen predicts that companies will see more of these types of cyberthreats in the coming year.


What made NotPetya different from other cybersecurity attacks is that it originated not with Maersk but as an attack on the Ukrainian tax software M.E.Doc, which then spread through compromised networks. Booz Allen describes these types of cybersecurity risks as "indirect supply attacks," where cybercriminals infiltrate a small software provider or other supplier that operates within the supply chain of a much larger company. The ultimate target is not the original compromised company but larger Fortune 500 companies.

Another cybersecurity trend that supply chain managers should be aware of is extortion attacks on industrial control systems (ICS). In these cases, hackers gain access to a manufacturer's ICS and demand that the company pay a ransom to prevent or mitigate any disruptions to operations. Automakers Nissan and Renault and pharmaceutical company Merck all experienced such attacks in 2017. In addition, there have been incidents of Eastern European criminals who have used such techniques against chemical manufacturing facilities, according to the report.

However, the report suggests that these types of threats will not be widespread. To successfully carry out such attacks, criminals will need to know not only how to gain access to a control system but also how to target the process being controlled. "Attacks of this nature will likely be beyond the reach of most cybercriminals and be limited to a small, niche group of technically savvy actors," says the report.

Recent

More Stories

photos of grocery supply chain workers

ReposiTrak and Upshop link platforms to enable food traceability

ReposiTrak, a global food traceability network operator, will partner with Upshop, a provider of store operations technology for food retailers, to create an end-to-end grocery traceability solution that reaches from the supply chain to the retail store, the firms said today.

The partnership creates a data connection between suppliers and the retail store. It works by integrating Salt Lake City-based ReposiTrak’s network of thousands of suppliers and their traceability shipment data with Austin, Texas-based Upshop’s network of more than 450 retailers and their retail stores.

Keep ReadingShow less

Featured

minority woman with charts of business progress

Study: Inclusive procurement can fuel economic growth

Inclusive procurement practices can fuel economic growth and create jobs worldwide through increased partnerships with small and diverse suppliers, according to a study from the Illinois firm Supplier.io.

The firm’s “2024 Supplier Diversity Economic Impact Report” found that $168 billion spent directly with those suppliers generated a total economic impact of $303 billion. That analysis can help supplier diversity managers and chief procurement officers implement programs that grow diversity spend, improve supply chain competitiveness, and increase brand value, the firm said.

Keep ReadingShow less
Logistics industry growth slowed in December
Logistics Managers' Index

Logistics industry growth slowed in December

Logistics industry growth slowed in December due to a seasonal wind-down of inventory and following one of the busiest holiday shopping seasons on record, according to the latest Logistics Managers’ Index (LMI) report, released this week.

The monthly LMI was 57.3 in December, down more than a percentage point from November’s reading of 58.4. Despite the slowdown, economic activity across the industry continued to expand, as an LMI reading above 50 indicates growth and a reading below 50 indicates contraction.

Keep ReadingShow less
pie chart of business challenges in 2025

DHL: small businesses wary of uncertain times in 2025

As U.S. small and medium-sized enterprises (SMEs) face an uncertain business landscape in 2025, a substantial majority (67%) expect positive growth in the new year compared to 2024, according to a survey from DHL.

However, the survey also showed that businesses could face a rocky road to reach that goal, as they navigate a complex environment of regulatory/policy shifts and global market volatility. Both those issues were cited as top challenges by 36% of respondents, followed by staffing/talent retention (11%) and digital threats and cyber attacks (2%).

Keep ReadingShow less
cargo ships at port

Strike threat lingers at ports as January 15 deadline nears

Retailers and manufacturers across the country are keeping a watchful eye on negotiations starting tomorrow to draft a new contract for dockworkers at East coast and Gulf coast ports, as the clock ticks down to a potential strike beginning at midnight on January 15.

Representatives from the International Longshoremen's Association (ILA) and the United States Maritime Alliance (USMX) last spoke in October, when they agreed to end a three-day strike by striking a tentative deal on a wage hike for workers, and delayed debate over the thornier issue of port operators’ desire to add increased automation to port operations.

Keep ReadingShow less