Third-Party Cyber Risks to Global Supply Chains

This report presents a security assessment of key Indian suppliers and their impact on global supply chains. It outlines the significant cyber risks associated with third-party vendors in India, revealing that 52.6% of Indian companies in the sample experienced at least one third-party breach. The report details the varying security ratings among different sectors, with IT and aerospace firms showing stronger defenses compared to the semiconductor and pharmaceutical sectors, which are more vulnerable to cyberattacks. The analysis highlights that the IT sector, despite higher average security scores, still faces substantial risks due to prevalent typosquatting and credential compromises. The pharmaceutical sector is also flagged for its high incidence of publicly reported breaches and ransomware attacks. Key findings indicate that network security issues, particularly related to certificate management and patching cadence, are common contributors to low security ratings among Indian companies. The report emphasizes the critical importance of assessing the cyber health of suppliers to ensure business continuity and operational resilience.