Cyber glossary

What is a Supply Chain Attack?

A cyber attack that targets vulnerabilities in third-party software or service providers to compromise downstream organisations.

Lecture 1

Supply Chain Attack

A cyber attack that targets vulnerabilities in third-party software or service providers to compromise downstream organisations.

How it works in practice

A widely used IT management platform is compromised, and attackers push a malicious update to 18,000 organisations. Hundreds of companies suffer data breaches through the single point of compromise. Cyber insurers covering these companies face simultaneous claims, creating the same type of correlated loss event that cat bonds are designed to transfer to capital markets.

Related glossary entries

Browse all terms

A B C D E G H I L M N O P R S T V W Z

A

B

C

D

E

G

H

I

L

M

N

O

P

R

S

T

V

W

Z

Learn ILS properly with ILS101

Move from definitions into structures, pricing, triggers, reinsurance applications, and specialist risk topics.

Start Learning