Industry views
18 May 2026
by Andrius Ulenskas

Supply chain attacks: why trust is a security risk

Guest blog by Andrius Ulenskas, Technical Director at Hyve Managed Hosting #techUKSupplyChainSecurityWeek

Andrius Ulenskas

Andrius Ulenskas

Technical Director, Hyve Managed Hosting

Modern organisations rely on complex networks of third-party vendors, software, and managed services to operate at scale. While this enables efficiency and innovation, it also expands the attack surface in ways that are not always visible or easily controlled. Supply chain attacks exploit this by targeting trusted relationships rather than breaching organisations directly. 

In this insight, we discuss: 

  • What is changing in supply chain attacks
  • The role of AI in evolving supply chain attacks
  • Why traditional approaches are being reassessed
  • Strengthening resilience across the supply chain lifecycle

What is changing in supply chain attacks

Supply chain threats have evolved into coordinated, scalable attacks targeting software ecosystems, identity systems, and automated deployment pipelines. Rather than focusing on single organisations, attackers increasingly compromise upstream components such as open-source dependencies, shared libraries, and build environments. A single breach at this level can cascade across multiple downstream organisations.

Identity-based attacks are also rising, with compromised credentials, API keys, and privileged tokens used to bypass traditional defences. Trusted software update mechanisms are a persistent risk, as automated updates and signed releases can still be abused when upstream environments are compromised.

A report by SecurityScorecard found that 78% of organisations’ cybersecurity programmes cover less than half of their vendor ecosystem. While direct suppliers are often well managed, indirect and fourth-party dependencies create blind spots which are difficult to address through traditional assurance models.

The role of AI in evolving supply chain attacks

Artificial intelligence is adding complexity to how attacks are developed and delivered. Tools which generate realistic communications are making it easier to impersonate trusted suppliers or internal contacts, increasing the success of phishing and fraud. Automated analysis of codebases and dependency trees is also accelerating the discovery of vulnerabilities in shared components, enabling earlier exploitation.

At the same time, AI-assisted phishing is increasing, with new delivery methods such as malicious calendar invites and image-based attachments designed to evade traditional controls. While similar technologies are improving detection and response, the accessibility and speed of these tools are contributing to a faster and less predictable threat environment.

This is occurring alongside a broader shift towards automation. According to Gartner, 60% of supply chain disruptions could be resolved without human intervention within the next decade, increasing reliance on systems that must themselves be trusted and secured.

Why traditional approaches are being reassessed

Periodic vendor audits and compliance checks are important, but they provide only a point-in-time view of risk. Supply chain threats are continuous and evolving, making static assessments insufficient on their own.

As a result, organisations are placing greater emphasis on continuous assurance, improved dependency mapping, and closer alignment between procurement, development, and security functions. This reflects a shift away from treating vendor risk as a standalone activity towards a more integrated model of operational resilience.

Strengthening resilience across the supply chain lifecycle

Mitigating supply chain risk requires layered controls across the full attack lifecycle: 

Initial access and entry points: Phishing and credential compromise are common - recent reporting from Hoxhunt shows a sharp increase in AI-assisted phishing, alongside new formats designed to bypass traditional controls. Organisations are responding with layered email security and DNS filtering to reduce exposure. 

Endpoint visibility and detection: Behaviour-based endpoint protection and centralised monitoring improve visibility across systems, supporting earlier detection of suspicious activity. 

Third-party access controls: As vendor connectivity expands, micro-segmentation and multi-factor authentication are increasingly used to limit access and reduce the impact of credential theft

Software supply chain integrity: Organisations are placing greater emphasis on update integrity, including malware scanning, digital signature verification, and monitoring for abnormal update behaviour. 

Backup and recovery: Secure, regularly tested backups are critical for recovering from disruption caused by compromised dependencies or malicious updates. 

Incident response: Despite stronger controls, organisations are planning for compromise scenarios, focusing on rapid isolation and tested recovery processes to minimise disruption. 

Next steps

Supply chain attacks continue to evolve in scale and sophistication, requiring a more proactive and integrated approach to risk management. Organisations should prioritise continuous visibility across their vendor ecosystem, strengthen controls around identity and access, and improve oversight of software dependencies and update mechanisms.

Hyve Managed Hosting is a global hosting provider with a passion for exceptional customer service. Adopting a customer-centric approach, Hyve delivers a range of managed hosting services, from private cloud and enterprise cloud, to dedicated servers and security services, excelling in bespoke solutions and centralised management. 

techUK Supply Chain Security Campaign Week 2026

Explore the technologies, policies and partnerships shaping the future of secure and resilient supply chains across the UK. From third-party cyber risk to defence, AI and operational resilience, Supply Chain Security Campaign Week brings together expert insight on the challenges organisations are facing and how industry is responding. Follow the week to stay informed and connected to the evolving threat landscape.

Explore campaign

 

Securing the chain: innovation, accountability and resilience in supply chain security webinar

Explore how organisations are strengthening supply chain security through innovation, accountability and resilience. Gain insight into emerging technologies, regulatory approaches and practical strategies for managing cyber risk across complex supply chains. Join the webinar to understand how industry and government are responding to an evolving threat landscape.

Book now

 

Cyber Resilience Programme activities

techUK brings together key players across the cyber security sector to promote leading-edge UK capabilities, build networks and grow the sector. techUK members have the opportunity to network, share ideas and collaborate, enabling the industry as a whole to address common challenges and opportunities together. Visit the programme page here.

 

Upcoming events

20 May 2026

Securing the chain: innovation, accountability and resilience in supply chain security webinar

Online Webinar
28 May 2026

Government’s Cyber Resilience Pledge: techUK member briefing

Online Industry Briefing
29 June 2026

Strengthening the OT workforce: techUK roundtable

London and online Roundtable

Latest news and insights 

Learn more and get involved

 

Cyber Resilience updates

Sign-up to get the latest updates and opportunities from our Cyber Resilience programme.

 

 

Here are the five reasons to join the Cyber Resilience programme

Download

Join techUK groups

techUK members can get involved in our work by joining our groups, and stay up to date with the latest meetings and opportunities in the programme.

Learn more

 

Become a techUK member

Our members develop strong networks, build meaningful partnerships and grow their businesses as we all work together to create a thriving environment where industry, government and stakeholders come together to realise the positive outcomes tech can deliver.

Learn more

Email _ Book now _ Annual Dinner 2026 (1).png

 

 Meet the team 

Jill Broom

Jill Broom

Head of Cyber Resilience, techUK

Jill leads the techUK Cyber Resilience programme, having originally joined techUK in October 2020 as a Programme Manager for the Cyber and Central Government programmes. She is responsible for managing techUK's work across the cyber security ecosystem, bringing industry together with key stakeholders across the public and private sectors. Jill also provides the industry secretariat for the Cyber Growth Partnership, the industry and government conduit for supporting the growth of the sector. A key focus of her work is to strengthen the public–private partnership across cyber to support further development of UK cyber security and resilience policy.

Before joining techUK, Jill worked as a Senior Caseworker for an MP, advocating for local communities, businesses and individuals, so she is particularly committed to techUK’s vision of harnessing the power of technology to improve people’s lives. Jill is also an experienced editorial professional and has delivered copyediting and writing services for public-body and SME clients as well as publishers.

Email:
[email protected]
Website:
www.techuk.org/
LinkedIn:
https://www.linkedin.com/in/jill-broom-19aa824

Read lessmore

Annie Collings

Annie Collings

Senior Programme Manager, Cyber Resilience, techUK

Annie is the Programme Manager for Cyber Resilience at techUK. She first joined as the Programme Manager for Cyber Security and Central Government in September 2023. 

In her role, Annie supports the Cyber Security SME Forum, engaging regularly with key government and industry stakeholders to advance the growth and development of SMEs in the cyber sector. Annie also coordinates events, engages with policy makers and represents techUK at a number of cyber security events.

Before joining techUK, Annie was an Account Manager at a specialist healthcare agency, where she provided public affairs support to a wide range of medical technology clients. She also gained experience as an intern in both an MP’s constituency office and with the Association of Independent Professionals and the Self-Employed. Annie holds a degree in International Relations from Nottingham Trent University.

Email:
[email protected]
Twitter:
anniecollings24
LinkedIn:
https://www.linkedin.com/in/annie-collings-270150158/

Read lessmore

Olivia Staples

Olivia Staples

Junior Programme Manager - Cyber Resilience, techUK

Olivia Staples joined techUK in May 2025 as a Junior Programme Manager in the Cyber Resilience team.

She supports the programs mission to promote cyber resilience by engaging key commercial and government stakeholders to shape the cyber resilience policy towards increased security and industry growth. Olivia assists in member engagement, event facilitation and communications support.

Before joining techUK, Olivia gained experience in research, advocacy, and strategic communications across several international organisations. At the Munich Security Conference, she supported stakeholder engagement and contributed to strategic communications. She also worked closely with local and national government stakeholders in Spain and Italy, where she was involved in policy monitoring and advocacy for both public and private sector clients.

Olivia holds an MSc in Political Science (Comparative Politics and Conflict Studies) from the London School of Economics (LSE) and a BA in Spanish and Latin American Studies from University College London (UCL).

Outside of tech, Olivia enjoys volunteering with local charities and learning Norwegian.

Email:
[email protected]

Read lessmore

 

 

 

 

Authors

Andrius Ulenskas

Andrius Ulenskas

Technical Director, Hyve

Return to listing