About: Supply chain attack     Goto   Sponge   NotDistinct   Permalink

An Entity of Type : yago:YagoPermanentlyLocatedEntity, within Data Space : dbpedia.org associated with source document(s)
QRcode icon
http://dbpedia.org/describe/?url=http%3A%2F%2Fdbpedia.org%2Fresource%2FSupply_chain_attack&graph=http%3A%2F%2Fdbpedia.org&graph=http%3A%2F%2Fdbpedia.org

A supply chain attack is a cyber-attack that seeks to damage an organization by targeting less secure elements in the supply chain. A supply chain attack can occur in any industry, from the financial sector, oil industry, to a government sector. A supply chain attack can happen in software or hardware. Cybercriminals typically tamper with the manufacturing or distribution of a product by installing malware or hardware-based spying components. Symantec's 2019 Internet Security Threat Report states that supply chain attacks increased by 78 percent in 2018.

AttributesValues
rdf:type
rdfs:label
  • Ataque a cadena de suministro (es)
  • Supply chain attack (en)
  • 供应链攻击 (zh)
rdfs:comment
  • 供应链攻击是一種傳播間諜軟件的方式,一般通過產品軟件官網或軟件包存儲庫進行傳播。通常來說,黑客會瞄準部署知名軟件官網的服務器,篡改服務器上供普通用戶下載的軟件源代碼,將間諜軟件傳播給前往官網下載軟件的用戶。 此外,黑客還會向一些軟件開發者常用的软件包存储库如npm、PyPI和RubyGems等注入帶有惡意代碼的軟件包。這些軟件包在用戶下載後安裝時會觸發惡意行為。 比較知名的供應鏈攻擊事有XcodeGhost风波、Target公司的安全漏洞、東歐的ATM惡意軟件,以及震网(Stuxnet)電腦蠕蟲等。 供應鏈管理專家建議,為了避免網路犯罪的潛在損失,要對組織的供應網路進行嚴格的控管。 (zh)
  • Un ataque a la cadena de suministro (en inglés supply chain attack), también llamado ataque de cadena de valor o ataque de terceros,​ consiste en comprometer proveedores digitales de servicios externos (proveedores de servicios de internet, proveedores de telecomunicaciones, proveedores de software, proveedores de servicios externos, proveedores de hardware,...) como instrumento para infiltrarse desde allí en una organización objetivo. El asegurarse de que los proveedores de servicios externos son confiables es extremadamente difícil. La indirección dificulta la identificación del atacante.​ Este tipo de ataques tienen gran potencial debido a que un proveedor puede dar servicio a muchos clientes, los cuales a su vez pueden ser proveedores de otros. De esta forma, en una sola operación pued (es)
  • A supply chain attack is a cyber-attack that seeks to damage an organization by targeting less secure elements in the supply chain. A supply chain attack can occur in any industry, from the financial sector, oil industry, to a government sector. A supply chain attack can happen in software or hardware. Cybercriminals typically tamper with the manufacturing or distribution of a product by installing malware or hardware-based spying components. Symantec's 2019 Internet Security Threat Report states that supply chain attacks increased by 78 percent in 2018. (en)
foaf:depiction
  • http://commons.wikimedia.org/wiki/Special:FilePath/Iran_NPP_CIMG2451_m1.jpg
  • http://commons.wikimedia.org/wiki/Special:FilePath/Supply_chain_network.png
  • http://commons.wikimedia.org/wiki/Special:FilePath/Target_Westminster,_MD_(7505810590).jpg
dcterms:subject
Wikipage page ID
Wikipage revision ID
Link from a Wikipage to another Wikipage
Link from a Wikipage to an external page
sameAs
dbp:wikiPageUsesTemplate
thumbnail
dbp:%3F_
  • yes (en)
date
  • January 2022 (en)
reason
  • What about now? Maybe should be changed to "Microsoft worked with FireEye to..."? (en)
has abstract
  • Un ataque a la cadena de suministro (en inglés supply chain attack), también llamado ataque de cadena de valor o ataque de terceros,​ consiste en comprometer proveedores digitales de servicios externos (proveedores de servicios de internet, proveedores de telecomunicaciones, proveedores de software, proveedores de servicios externos, proveedores de hardware,...) como instrumento para infiltrarse desde allí en una organización objetivo. El asegurarse de que los proveedores de servicios externos son confiables es extremadamente difícil. La indirección dificulta la identificación del atacante.​ Este tipo de ataques tienen gran potencial debido a que un proveedor puede dar servicio a muchos clientes, los cuales a su vez pueden ser proveedores de otros. De esta forma, en una sola operación puede infectar todos los clientes .​ (es)
  • A supply chain attack is a cyber-attack that seeks to damage an organization by targeting less secure elements in the supply chain. A supply chain attack can occur in any industry, from the financial sector, oil industry, to a government sector. A supply chain attack can happen in software or hardware. Cybercriminals typically tamper with the manufacturing or distribution of a product by installing malware or hardware-based spying components. Symantec's 2019 Internet Security Threat Report states that supply chain attacks increased by 78 percent in 2018. The , Eastern European , as well as the computer worm are examples of supply chain attacks. Supply chain management experts recommend strict control of an institution's supply network in order to prevent potential damage from cyber criminals. (en)
  • 供应链攻击是一種傳播間諜軟件的方式,一般通過產品軟件官網或軟件包存儲庫進行傳播。通常來說,黑客會瞄準部署知名軟件官網的服務器,篡改服務器上供普通用戶下載的軟件源代碼,將間諜軟件傳播給前往官網下載軟件的用戶。 此外,黑客還會向一些軟件開發者常用的软件包存储库如npm、PyPI和RubyGems等注入帶有惡意代碼的軟件包。這些軟件包在用戶下載後安裝時會觸發惡意行為。 比較知名的供應鏈攻擊事有XcodeGhost风波、Target公司的安全漏洞、東歐的ATM惡意軟件,以及震网(Stuxnet)電腦蠕蟲等。 供應鏈管理專家建議,為了避免網路犯罪的潛在損失,要對組織的供應網路進行嚴格的控管。 (zh)
prov:wasDerivedFrom
page length (characters) of wiki page
foaf:isPrimaryTopicOf
is rdfs:seeAlso of
is Link from a Wikipage to another Wikipage of
Faceted Search & Find service v1.17_git139 as of Feb 29 2024


Alternative Linked Data Documents: ODE     Content Formats:   [cxml] [csv]     RDF   [text] [turtle] [ld+json] [rdf+json] [rdf+xml]     ODATA   [atom+xml] [odata+json]     Microdata   [microdata+json] [html]    About   
This material is Open Knowledge   W3C Semantic Web Technology [RDF Data] Valid XHTML + RDFa
OpenLink Virtuoso version 08.03.3331 as of Sep 2 2024, on Linux (x86_64-generic-linux-glibc212), Single-Server Edition (61 GB total memory, 46 GB memory in use)
Data on this page belongs to its respective rights holders.
Virtuoso Faceted Browser Copyright © 2009-2024 OpenLink Software