The Equifax, SEC and Deloitte breaches received the most news coverage, the incident that really caught my eye was the hack of CCleaner. The malware had been active for at least 31 days and infected 700,000 systems. This is the third incident identified in the past two months that has targeted third party software products. Attackers will continue to seek out the weakest link as it increases their chance of successfully breaching the most hardened targets. Commercial hacking by nation states is on the rise, with smaller vendors and providers suffering from a barrier of entry to do more.”]
Source: https://www.csoonline.com/article/3229394/software-supply-chain-puts-businesses-at-risk.html