Supply Chain Attack

Revision as of 19:23, 23 July 2021 by Jessica (talk | contribs)

A Supply Chain Attack is when a threat actor makes use of unsecured network protocols, unprotected server infrastructures, or unsafe coding practices. The supply chain attacker breaks in, changes source codes, and hides malware in build and update processes.[1]

Solorigate malware infection chain (Flowchart from Microsoft Security blog)

References