Industry Talk
Regular Industry Development Updates, Opinions and Talking Points relating to Manufacturing, the Supply Chain and Logistics.BA/Boots Data Breach – Expert Comment
It appears that the very serious British Airways/Boots data breach has arisen through a double layered third party compromise, if initial reports are correct.
Working closely with third parties, whilst bringing many benefits, adds a lot of risks unless key security measures are in place, with the right controls and monitoring.
When working with a supplier, organisations need to secure remote access without exposing the keys to their kingdom.
It’s vital to separate third parties from credentials, not allow VPN access, use multi-factor authentication, and record sessions.