Third-party cybersecurity incidents are on the rise, but organizations face challenges in mitigating risks arising for the software supply chain, a survey of 200 chief information security officers (CISOs) has found.
The survey, from the security firm Panorays, found that more than nine out of 10 CISOs reported an increase in third-party cybersecurity incidents in 2024. Nearly three-quarters of them experienced a moderate increase in incidents, and nearly one-quarter encountered a significant escalation of events.
Panorays CEO Matan Or-El said in a statement:
“This year’s survey reveals a troubling story. Third-party risks are growing faster than the resources organizations have to address them. As supply chains become more complex and interconnected, the need for smarter, AI-driven solutions is no longer optional, it’s critical for businesses to stay secure.”
Here are six key lessons from the “2025 CISO Survey for Third-Party Cyber Risk Management” report.
[ Download Today: 2025 Software Supply Chain Security Report | Join the SSCS Report Webinar ]
1. Organizations lack deep visibility into the software supply chain
The survey found…
