
The recent string of ransomware attacks against supply chain entities has highlighted how susceptible organizations are to these types of attacks.
Although the Solarwinds attack in late 2020 and the Microsoft Exchange breach in early 2021 were not ransomware-related, the over-arching effects of those compromises has shown that despite the best efforts of information security programs, there are some serious gaps in how we have been preparing security incidents.