MITRE report provides guide for organizations to secure software supply chains in response to SolarWinds

MITRE’s latest supply chain report proposes a set of principles organizations should adopt based on lessons learned from the SolarWinds hack, and outlines recommendations from the Cyberspace Solarium Commission that are fundamental to achieving better security.

“Supply chain exploitations like the SolarWinds compromise should not be a surprise,” MITRE researchers said in the report. “Since 2015, there have been numerous supply chain attacks. Billions of dollars are spent annually to protect against cybersecurity and software security incidents, yet the number...