Supply chain delays put enterprises on ransomware risk alert

New research reveals majority of large businesses can’t replace unsupported hardware, leaving potential vulnerabilities exposed.

  • 2 years ago Posted in

The continued global supply chain disruption is putting enterprises at increased risk from the likes of ransomware attacks, according to new research from Citrix.

 

The new study, based on a poll of 200 IT security decision makers in UK businesses employing over 250 people, explored the current supply chain landscape and its potential cyber-security implications.

 

It has revealed that four in five (80%) security leaders believe that supply chain issues or delays have put their organisation at increased risk from ransomware - for example, by being unable to replace unsupported hardware. A further 70 per cent believe their organisation is being specifically targeted by cyber-attackers in order to gain access to external systems and data, such as those in government or private enterprises.

 

While nearly two thirds (62%) of organisations aim to refresh their hardware stack - including servers, networking equipment, data centre racks, laptops, smartphones, and tablets - at least annually, 70 per cent admitted supply chain issues have delayed these attempts.

 

Such delays have resulted in around two in three (63%) effected organisations relying on devices within their IT architecture after their manufacturer support period has ended. Over half (57%) of IT security leaders impacted by the delays admitted they could be relying on devices whereby the support period expired up-to a year ago.

Many organisations may be reliant on unsupported hardware, yet IT security leaders are bullish about their level of protection. Indeed 93 per cent reported feeling confident in their organisation’s contingency plans to deal with failures caused by unsupported hardware - for example, plans for rapid migration to the cloud, to counter zero-day exploits that expose new attack surfaces.

 

“The global supply chain crisis has had significant knock-on effects across all industries, with security leaders now feeling the impact as they seek to safeguard their organisations,” Chris Mayers, chief security architect, Citrix, said.

 

“With key infrastructural hardware like networking and data centre equipment underpinned by software, some of which is now unsupported, it’s critical that enterprises have a clear and robust networking perimeter. Built on a foundation of a virtualised cloud, such an architecture enables enterprises to contain new attacks and prevent the spread of the likes of malware and ransomware,” Mayers added.

54% of consumers don’t know how much personal data AI tools collect.
By Alan Jacobson, Chief Data and Analytics Officer, Alteryx.
Research finds that the industry is struggling with a growing resource and skills gap while...
Ransom attacks in the cloud are a perennially popular topic of discussion in the cloud security...
Talent and training partner, mthree, which supports major global tech, banking, and business...
Cloud-native organisations to gain full understanding over every identity in the cloud, secured...
MSSPs identify regulatory compliance as additional factor as organisations seek to shift...
Orange Business (Norway), a global leader in digital services, has selected ARMO’s advanced...