Cybersecurity Ventures predicted that world injury prices ensuing from software program provide chain assaults would attain $60 billion USD by 2025, and $138 billion by 2031.
The potential financial loss isn’t the headline, the explanation behind the spike is. Cybercriminals are now not tampering with remoted packages; they’re transferring deeper into construct pipelines, registries, mannequin sources, and automation methods, bypassing the normal gates DevSecOps, AppSec, and safety leaders depend on.
Gartner projected that by the top of 2025, practically 45 p.c of corporations had been anticipated to have confronted a minimum of one software program supply-chain incident.
A current deep-drive article printed by Ox Safety explains why the previous yr represents a turning level for software program supply-chain danger, and what groups should do now to regain lifecycle-wide management earlier than these upstream weaknesses develop into downstream incidents.
Learn the Full Story
