The National Cyber Security Centre (“NCSC”) has issues new guidance, and is suggesting that organisations reviewing the cyber security risks from their supply chain, as they are seeing more cyber attacks using this way of doing harm.
This is an area of risk that is often ignored, but the NCSC guidance includes some good advice which is easy to implement, as well as links to other helpful documents.
You can see the guidance at https://www.ncsc.gov.uk/news/ncsc-issues-fresh-guidance-following-recent-rise-in-supply-chain-cyber-attacks