Sonatype found a 742% average annual increase in software supply chain attacks between 2019 and 2022.
Whether SolarWinds in 2019 or the Kaseya and Log4j attacks of 2021, all demonstrate the reach of such attacks and the damage they can inflict.
Supply chain breaches, however, can also have a very long tail. The CISA classified Log4Shell as endemic with vulnerable instances remaining for years to come, perhaps a decade or longer.
Collection
[
|
...
]