Most organizations see third-party security as a threat, but not a priority. This misconception leads to inadequate security protocols, misaligned budgets and resources, vulnerabilities in network/systems/supply chain management, and weaker attack surfaces. We can look to two recent examples of data breaches to see why heightened access management of critical resources is crucial to protecting your organization from a breach. Ask yourself, If this asset is compromised or stolen, is it a big deal? Are people able to still do their jobs if something happens to it?”]
Source: https://www.inforisktoday.com/blogs/third-parties-are-source-so-many-hacks-p-3173