Cyber Assaults Hit NHS Trusts: Northdoor's Perspective
In the wake of a recent cyberattack that has impacted government agencies and businesses across Europe and Asia, the growing threat public sector organisations face from cybercriminals has been reinforced. AJ Thompson, Chief Commercial Officer at Northdoor plc, has outlined several proactive strategies for public sector organisations to manage supply chain risks and cybersecurity vulnerabilities.
The first strategy is to achieve a comprehensive understanding of partner network vulnerabilities. This involves identifying and assessing risks within the supply chains and partner ecosystems of public sector organisations. Traditional methods like surveys and questionnaires, which rely on the honesty and knowledge of third-party IT teams, are no longer sufficient. Instead, organisations must delve deeper to prevent cybercriminals from exploiting weak links.
The second strategy is to leverage advanced technology for risk visibility. New tools can now provide a 360-degree real-time view of supply chain risks, enabling organisations to monitor emerging threats constantly and have proactive conversations with partners to close vulnerabilities before they are exploited.
The third strategy is to prioritise supply chain risk management despite constrained resources. With tight budgets and limited internal resources, especially in the healthcare sector, organisations need to invest strategically in technologies and expertise that provide holistic visibility and control over their partner networks to mitigate sophisticated and growing cyber risks.
AJ Thompson also emphasises the increasing sophistication of cyber threats. Cybercriminals increasingly target supply chains as entry points, making managing supply chain cybersecurity not just an option, but an essential measure.
The breach, which originated from a flaw in a third-party provider's app, Ivanti's Endpoint Manager Mobile, has highlighted the need for vigilance. Attackers obtained staff mobile numbers and IMEI numbers during the breach, underscoring the potential damage that can be caused by vulnerabilities within an organisation's supply chain.
For public sector organisations with constrained budgets and limited internal resources, keeping up with emerging threats across their partner ecosystem can feel daunting. However, the rising costs of data breaches, with the average cost hitting $4.88 million, underscore the need for effective cybersecurity measures.
In the insurance sector, only 5.5% of insurers and brokers receive an A rating in cybersecurity, indicating a need for improvement. The breach of two NHS Trusts this month further underscores the vulnerability of the public sector.
Vulnerabilities within an organisation's supply chain can render frontline cybersecurity ineffective by leaving 'back doors' open. By implementing these proactive strategies, public sector organisations can defend against increasingly sophisticated cyberattack methods targeting supply chains. These approaches include acquiring full visibility into supply chain vulnerabilities using modern tools, engaging in continuous risk assessment with partners, and dedicating resources to close gaps promptly. These strategies help public sector organisations stay one step ahead in the ongoing battle against cybercriminals.
- Achieving a comprehensive understanding of partner network vulnerabilities is crucial, as traditional methods for identifying and assessing risks within supply chains are no longer sufficient, and cybercriminals are exploiting weak links.
- Leveraging advanced technology for risk visibility is essential, as new tools can provide real-time, 360-degree views of supply chain risks, enabling organizations to monitor emerging threats and proactively address vulnerabilities.
- Despite constrained resources, prioritizing supply chain risk management is necessary, as investing strategically in technologies and expertise can provide holistic visibility and control over partner networks, helping to mitigate sophisticated and growing cyber risks.
- The increasing sophistication of cyber threats, particularly those targeting supply chains, underscores the importance of managing supply chain cybersecurity, not just as an option, but as an essential measure to prevent potential damages and data breaches.
