Articles Third-Party Access One vendor credential. Every operator they serve. The supply chain cascade. 7 May 2026 Articles One vendor credential. Every operator they serve. The supply chain cascade. When hackers breached Colonial Pipeline in May 2021, shutting down America's largest fuel pipeline for six days, investigators…
Articles Manufacturing & Industrial NotPetya 7 May 2026 Articles NotPetya: How a Supply Chain Credential Compromise Cost Manufacturers $10 Billion On 27 June 2017, a routine software update from Ukrainian accounting firm M.E.Doc became the vector for the…
Articles Manufacturing & Industrial NIS2, IEC 62443, and CMMC 2.0 7 May 2026 Articles NIS2, IEC 62443, and CMMC 2.0: what manufacturers must evidence on credential access When hackers infiltrated Toyota's supplier network in February 2022, stealing 296GB of technical drawings and blueprints, the attack…
Articles Critical Infrastructure NIS2 and IEC 62443 7 May 2026 Articles NIS2 and IEC 62443: What They Require on Operational Technology Credential Access The December 2022 attack on Hydro-Québec's operational systems exposed a critical vulnerability that regulators had long feared: compromised…
Articles Critical Infrastructure NIS2 and Credential Control 7 May 2026 Articles NIS2 and Credential Control — What Critical Infrastructure Operators Must Demonstrate Executive Summary The Network and Information Systems Directive 2 (NIS2), effective from October 2024, fundamentally transforms cybersecurity compliance…
Articles Managed Service Providers Kaseya 7 May 2026 Articles Kaseya: how one MSP credential reached 1,500 downstream businesses in hours On July 2, 2021, attackers compromised a single Managed Service Provider credential at Kaseya, triggering the largest supply…