One organization might implement solid cyber risk management strategies and ensure that their business partners do the same – but what about other firms that provide services organizations rely upon? A new report from BitSight takes a look at those “fourth party” connections that can be overlooked but that can cause trouble across a range of organizations.
“Many organizations are now focused on strengthening their own network security with firewalls, intrusion detection systems, identity management software, event log management tools, and more,” commented BitSight in the report, called “Risk Degrees of Separation: The Impact of Fourth Party Networks on Organizations.” “However, smart hackers and thieves have realized that the weakest point of entry into most organizations is through their vendors (third parties) and subcontractors (fourth parties). If a company shares data with its vendors or subcontractors then it may be at risk from data breaches at these organizations.”
Read more at http://www.advisenltd.com/2016/02/29/fourth-party-networks-can-spell-cyber-trouble-for-organizations-bitsight/
Erin Ayers, Fourth party networks can spell cyber trouble for organizations: BitSight, Advisen News (February 29, 2016), available with subscription at Advisen Cyber Front Page News. Subscribe now!
No comments:
Post a Comment