In the first quarter of 2021, 137 organizations reported experiencing supply chain attacks at 27 different third-party vendors. The number of supply-chain attacks rose 42% from the previous quarter. There are 10 best practices that a business can consider to help mitigate risk and validate the security of its supply chain. Ask the supplier’s security manager or CISO to discover how they protect their systems and data. If the supplier is a software provider, ask for an independent source code review. If a cloud provider, perform a Shodan search, or ask the supplier for a report of their own scans.
Source: https://www.helpnetsecurity.com/2021/07/06/security-supply-chain/