Kaspersky: Supply Chain Attacks Hit 22% of Companies in Egypt
KHADAMATY–NEW
A new global study by Kaspersky reveals that supply chain attacks have become the most common cyber threat facing businesses worldwide over the past year. According to the report, nearly one in three companies globally — and 22% of companies in Egypt — experienced a supply chain cyberattack during the last 12 months
Data cited from the World Economic Forum shows that 65% of large enterprises consider vulnerabilities in third-party vendors and supply chains to be the biggest obstacle to achieving cyber resilience in today’s highly interconnected digital environment
The Kaspersky-commissioned global study found that 31% of enterprise companies worldwide were affected by supply chain attacks during the past year, making them more common than any other type of cyber threat. The risk is particularly high for large enterprises, with 36% reporting incidents, compared with lower rates among small and medium-sized businesses
Researchers noted that large enterprises typically rely on extensive supplier networks, managing around 100 software and hardware vendors on average, significantly expanding their potential attack surface. In addition, companies often grant system access to numerous contractors. Smaller businesses reported working with about 50 contractors, while large enterprises averaged more than 130, increasing exposure to so-called trusted relationship attacks — cyberattacks that exploit legitimate connections between organizations
Globally, 25% of companies reported experiencing trusted relationship attacks in the past year. The highest rates were recorded in Turkey (35%), Singapore (33%), and Mexico (31%). In Egypt, 23% of organizations reported such attacks, compared with 22% across the Middle East
Sergey Soldatov, Head of Security Operations Center at Kaspersky, noted that businesses now operate within complex digital ecosystems where every supplier and integration forms part of an organization’s security profile. He stressed that protecting modern enterprises requires a comprehensive cybersecurity approach that secures not only individual systems but also the entire network of business relationships
