Last week, a bombshell Bloomberg report alleged that Chinese spies had secretly inserted microchips on servers at Apple, Amazon, the US Department of Defense, and nearly 30 other US companies, collecting data and compromising the supply chain—an act that, if true, has a number of implications for businesses.
The bad news is that it’s essentially impossible to secure supply chains from attacks like this, according to a post from Krebs on Security. Even if you identify technology vendors that have been associated with supply-chain hacks, he wrote, it’s hard to remove them from the procurement chain, because it can be difficult to tell from the brand name of a given device who actually makes the different components in it.
By Alison DeNisco Rayome
To read the full article click here.