Category Archives: Third-Party Risk

Cybersecurity Lessons from the Election: Human Behavior

– There have been a number of recent articles in the popular press suggesting that behavioral science can serve to explain people’s responses to COVID-19 and indicate how individuals might be persuaded to act in line with the common good. This concept is examined in two recent articles, one…

Solar Winds Blow Hard

– Unbelievable! But true. The enormous hack, purportedly by Russia (per Secretary of State Mike Pompeo and others), of major U.S. government agencies and the U.S.’s biggest corporations—apparently some 18,000 organizations according to the software maker—came through malware planted in updates…

Outsourcing, Supply Chains and (National) Security

– For all intents and purposes, the terms “outsourcing” and “supply chain” are used interchangeably and refer to when you are dependent on a third party for providing products and services. However, there are many examples of internal sourcing (or “insourcing”), where supply chains…