Of all recently documented cyberbreaches, more than 60% occur through trusted vendors whose computer systems have been compromised by hackers. A paper by Thomas Choi, professor of Supply Chain Management and Harold E. Fearon Chair of Purchasing Management, and his co-author Zac Rogers of Colorado State University identify five supply network vulnerability examples to help companies understand the malicious actors who search for the “path of least resistance” into their networks.

In this article on The Economist June 11, 2019:

Research by Zac Rogers of Colorado State University and Thomas Thomas Choi of Arizona State University suggests that over 60% of the reported cyberattacks on publicly traded American firms in 2017 were launched through the computer systems of suppliers or contractors, up from less than a quarter in 2010.