eFinder

eFinder

HomeCorporate accountability › Article

Global Supply Chains at Risk of Cyber Breaches and Phishing

Supplychaindigital · · 842 words · By Louise Collins
Corporate accountability Cybersecurity Vulnerability Supply Chain Risk

The article discusses a Cyber Breaches Survey from the UK government, highlighting a gap in supply chain security preparedness among UK businesses and charities. It emphasizes the risks of third-party vulnerabilities, the impact of AI on the attack surface, and the continued disruptiveness of phishing attacks.

open_in_new Read the original article: https://supplychaindigital.com/news/global-supply-chains-at-risk-of-cyber-breach…

analyticsAnalysis

20%
Propaganda Score
confidence: 95%
Minor concerns. Some persuasive language detected, but largely factual.

psychologyDetected Techniques

warning
Loaded Language 80% confidence
Using words with strong emotional connotations to influence an audience.
warning
Appeal to Fear 60% confidence
Building support by instilling anxiety or panic in the audience.

fact_checkFact-Check Results

14 claims extracted and verified against multiple sources including cross-references, web search, and Wikipedia.

info Single Source 4
schedule Pending 4
help Insufficient Evidence 3
check_circle Corroborated 2
verified Verified By Reference 1
check_circle
“43% of businesses and 28% of charities reported experiencing a breach or attack in the past year.”
CORROBORATED
The claim that 43% of UK businesses experienced a cyberattack is corroborated by Startups Magazine and referenced in the context of the Cyber Security Breaches Survey. While one source mentions 30% for charities instead of 28%, the business figure is consistent across reports of the survey.
travel_explore
web search NEUTRAL — Four in 10 (43%) of UK businesses and 30% of charities experienced a cyberattack or data breach in the last 12 months, according to the latest Cyber Security Breaches Survey. While this marks a slight…
https://startupsmagazine.co.uk/article-cyberattacks-drop-nea…
travel_explore
web search NEUTRAL — Pensive businessman sitting at office. 43% of UK business owners are not confident they could make redundancies in line with the law, a survey from BrightHR, a HR software and employment law advice se…
https://smebusinessnews.co.uk/2020/08/24/brighthr-survey-rev…
travel_explore
web search NEUTRAL — sciencedirect.com›science/article/am/pii/…
https://www.sciencedirect.com/science/article/am/pii/S096386…
check_circle
“only 15% of businesses and 9% of charities formally review cyber risks posed by immediate suppliers.”
CORROBORATED
Two independent sources (Supply Chain Digital and a report on SMEs) confirm the figures of 15% (or 14% in one instance) for businesses and 9% for charities formally reviewing risks from immediate suppliers, citing the same survey context.
travel_explore
web search NEUTRAL — Supply chain visibility falls short. According to the survey, only 15% of businesses and 9% of charities formally review cyber risks posed by immediate suppliers. The wider supply chain shows a more p…
https://supplychaindigital.com/news/global-supply-chains-at-…
travel_explore
web search NEUTRAL — Geographic coverage: United Kingdom. The Department for Science, Innovation and Technology (DSIT), in partnership with the Home Office, commissioned the Cyber Security Breaches Survey of UK businesses…
https://www.gov.uk/government/statistics/cyber-security-brea…
travel_explore
web search NEUTRAL — Supply chain risk management also remains an area of weakness, with only 14% of businesses and 9% of charities formally reviewing risks from immediate suppliers.
https://www.telecomstechnews.com/news/smes-boost-cyber-resil…
info
“Just 6% of businesses and 4% of charities conduct due diligence beyond their direct supplier relationships.”
SINGLE SOURCE
The web results provided for this claim discuss general due diligence and supply chain risk management but do not contain the specific percentages (6% and 4%) mentioned in the claim.
travel_explore
web search NEUTRAL — Join Sayari's Colby Potter on a webinar with American Association of Exporters and Importers (AAEI) where we will unpack how recent legislation is reshaping supply chain risk management—and what it me…
https://www.linkedin.com/posts/sayarilabs_due-to-changes-in-…
travel_explore
web search NEUTRAL — The role of ongoing due diligence combined with meaningful engagement with strategic suppliers cannot be understated. Effective due diligence is your North Star, illuminating your path towards respons…
https://altairltd.co.uk/2023/10/12/navigating-the-risks-of-n…
travel_explore
web search NEUTRAL — Companies, often sharing business relationships and suppliers, can enhance their negotiating leverage through collaboration. Collaboration is cost-effective, allowing businesses to share the financial…
https://www.ardeainternational.com/thinking/the-elephant-in-…
help
“High-profile breaches including the Trivy breach, Axios breach and Rockstar Games hack that originated from the Anodot breach illustrate how supplier vulnerabilities can cascade into major organisations.”
INSUFFICIENT EVIDENCE
The evidence shows that 'Trivy' is a security scanner tool used to find vulnerabilities, not a 'breach' itself. The claim mischaracterizes a security tool as a cyber incident.
travel_explore
web search NEUTRAL — Use Trivy to find vulnerabilities (CVE) & misconfigurations (IaC) across code repositories, binary artifacts, container images, and Kubernetes clusters. It's all about the community! Trivy is praised …
https://trivy.dev/
travel_explore
web search NEUTRAL — Trivy (pronunciation) is a comprehensive and versatile security scanner. Trivy has scanners that look for security issues, and targets where it can find those issues.
https://github.com/aquasecurity/trivy
travel_explore
web search NEUTRAL — With Aqua Trivy, DevOps teams can get set up and start scanning as fast as development requires. No database dependencies or middleware are required, and integration into the CI/CD pipeline is a simpl…
https://www.aquasec.com/products/trivy/
verified
“around 69% of large businesses and 65% of medium firms reported incidents, compared with 46% of small businesses and 42% of micro organisations.”
VERIFIED BY REFERENCE
The provided evidence includes general definitions of SMEs and unrelated information about CIRCIA and Wikipedia entries for 'Cyber', but does not contain the specific reporting rates for large, medium, small, and micro businesses.
menu_book
wikipedia NEUTRAL — Cyber- is a prefix derived from 'cybernetic', used in terms relating to computers, technology, networks (including Internet), and others. Cyber may also refer to:
https://en.wikipedia.org/wiki/Cyber
menu_book
wikipedia NEUTRAL — Cyber City or Cybercity may refer to: Cyber City Gurgaon, an industrial park in Gurgaon, India Cyber City Kochi, a proposed Special Economic Zone information technology park adjacent to Kochi, India …
https://en.wikipedia.org/wiki/Cyber_City
menu_book
wikipedia NEUTRAL — Cyber police are police departments or government agencies in charge of stopping cybercrime. Examples include: Cyber Crime Investigation Cell, the cybercrime unit of the Greater Mumbai Police FBI Cyb…
https://en.wikipedia.org/wiki/Cyber_police
+ 3 more evidence sources
info
“Formal cyber security strategies exist in 70% of large businesses and 57% of medium firms.”
SINGLE SOURCE
The search results returned are completely irrelevant, discussing the year 1970 and music playlists, providing no evidence for cyber security strategies in businesses.
travel_explore
web search NEUTRAL — From top to bottom, left to right: Apollo 13 suffers a near-fatal malfunction but returns safely; the Kent State shootings kill four students and trigger nationwide outrage; the 1970 FIFA World Cup in…
https://en.wikipedia.org/wiki/1970
travel_explore
web search NEUTRAL — From the electrifying riffs of Kiss and Dire Straits to the disco anthems of Abba and Bee Gees; from the classic rock vibes of Eagles and Fleetwood Mac to the unforgettable beats of Earth, Wind &...
https://www.youtube.com/playlist?list=PLGBuKfnErZlAkaUUy57-m…
travel_explore
web search NEUTRAL — The 1970s were a time of unrest and upheaval, with such notable events as the Fall of Saigon, the Soviet invasion of Afghanistan, the Munich massacre, and the resignation of U.S. President Richard Nix…
https://www.britannica.com/story/timeline-of-the-1970s
info
“Nearly a third of micro businesses consider cyber security a low priority according to the survey data.”
SINGLE SOURCE
The search results only provide dictionary definitions for the word 'approximately' and do not contain any data regarding micro businesses' priorities on cyber security.
travel_explore
web search NEUTRAL — May 12, 2026 · The meaning of APPROXIMATELY is in an approximate manner —used to indicate that a stated number, amount, or value is an approximation. How to use approximately in a sentence.
https://www.merriam-webster.com/dictionary/approximately
travel_explore
web search NEUTRAL — Get a quick, free translation! APPROXIMATELY definition: 1. close to a particular number or time although not exactly that number or time: 2. close to a…. Learn more.
https://dictionary.cambridge.org/dictionary/english/approxim…
travel_explore
web search NEUTRAL — Define approximately. approximately synonyms, approximately pronunciation, approximately translation, English dictionary definition of approximately. adj. 1. Almost exact or correct: the approximate t…
https://www.thefreedictionary.com/approximately
info
“Cyber security is considered a high priority by 72% of businesses and 60% of charities, rising to 100% among large organisations.”
SINGLE SOURCE
The evidence discusses AI adoption in charities and the NCSC's role, but does not provide the specific percentages of organisations that consider cyber security a high priority.
travel_explore
web search NEUTRAL — MHA is a leading UK professional services firm, working with growth focused organisations across audit, tax and advisory.The Charity Commission has acknowledged that AI may help charities free up time…
https://www.mha.co.uk/insights/ai-adoption-in-charities
travel_explore
web search NEUTRAL — National Cyber Security Centre has a separate website. The NCSC acts as a bridge between industry and government, providing a unified source of advice, guidance and support on cyber security, includin…
https://www.gov.uk/government/organisations/national-cyber-s…
travel_explore
web search NEUTRAL — UK ransomware threats are continuing to rise, according to a new a report, prompting calls for a more aligned approach to national cyber resilience.
https://www.itpro.com/security/uk-ransomware-attack-could-br…
help
“Phishing affected 38% of businesses and 25% of charities according to the survey.”
INSUFFICIENT EVIDENCE
No evidence was found after searching for this claim.
help
“The attack method was ranked as the most disruptive incident by 69% of organisations that experienced a breach.”
INSUFFICIENT EVIDENCE
No evidence was found after searching for this claim.
schedule
“Around 77% of businesses and 69% of charities have safeguards such as encryption or anonymisation in place.”
PENDING
schedule
“14% of businesses and 22% of charities hold unprotected personal data according to the survey.”
PENDING
schedule
“Reported losses rose from 2% to 5% year on year.”
PENDING
schedule
“Similarly, reputational damage cases climbed from 1% to 3%.”
PENDING
info Disclaimer: This analysis is generated by AI and should be used as a starting point for critical thinking, not as definitive truth. Claims are verified against publicly available sources. Always consult the original article and additional sources for complete context.