Global Costs of Software Supply Chain Attacks On The Rise

   December 9, 2025  Posted in Cyber Security Ventures

Global Costs of Software Supply Chain Attacks On The Rise

09 Dec Global Costs of Software Supply Chain Attacks On The Rise

Posted at 08:33h
in Blogs
by Taylor Fox
This week in cybersecurity from the editors at Cybercrime Magazine

Sausalito, Calif. – Dec. 9, 2025

– Read the full story from Wiz

Due to their cascading effect, supply chain attacks are costlier than most, with vendors and customers both bearing the brunt. Global costs of software supply chain attacks alone are estimated at $60 billion in 2025, and they’re expected to reach a whopping $138 billion by 2031, according to Cybersecurity Ventures.

Wiz breaks down three types of supply chain attacks:

Software supply chain attacks infiltrate software vendor systems to deliver compromised software to thousands of customers;

Hardware supply chain attacks involve adversaries introducing counterfeit devices into the global supply chain;

Third-party service attacks target customers of cloud service providers (CSPs), managed service providers (MSPs), SaaS platforms, and AI vendors by compromising software updates, API keys, or service integrations.

Comprehensive supply chain security requires visibility across the entire code-to-cloud lifecycle, and Wiz breaks that down for CISOs and security leaders in a blog post that includes a handy cheat sheet with best practices.

Read the Full Story

Cybercrime Magazine is Page ONE for Cybersecurity. Go to any of our sections to read the latest:

  • SCAM. The latest schemes, frauds, and social engineering attacks being launched on consumers globally.
  • NEWS. Breaking coverage on cyberattacks and data breaches, and the most recent privacy and security stories.
  • HACK. Another organization gets hacked every day. We tell you who, what, where, when, and why.
  • VC. Cybersecurity venture capital deal flow with the latest investment activity from various sources around the world.
  • M&A. Cybersecurity mergers and acquisitions including big tech, pure cyber, product vendors and professional services.
  • BLOG. What’s happening at Cybercrime Magazine. Plus the stories that don’t make headlines (but maybe they should).
  • PRESS. Cybersecurity industry news and press releases in real time from the editors at Business Wire.
  • PODCAST. New episodes daily on the Cybercrime Magazine Podcast feature victims, law enforcement, vendors, and cybersecurity experts.
  • RADIO. Tune into WCYB Digital Radio at Cybercrime.Radio, the first and only round-the-clock internet radio station devoted to cybersecurity.

Contact us to send story tips, feedback and suggestions, and for sponsorship opportunities and custom media productions.



Source link