Study reveals staggering cost of software supply chain vulnerabilities

A new study from Juniper Research has found that the total cost of software supply chain cyberattacks to businesses will exceed $80.6 billion globally by 2026, up from $45.8 billion in 2023. This growth of 76% reflects increasing risks from absent software supply chain security processes, and the rising complexity of software supply chains overall.

  • 1 year ago Posted in

The new study, Vulnerable Software Supply Chains Are a Multi-billion Dollar Problem, highlights the need for greater emphasis on the software elements of the supply chain as a critical security vulnerability. The study analysed how both shifts in wider cybersecurity processes, and the mindset around the management of the software supply chain are needed to address these risks.

“The software supply chain has been neglected over the years as a source of risk, leading to a situation where organisations face significant issues, if they cannot change the way they operate,” said Nick Maynard, report author and Head of Research at Juniper Research. “As software supply chains become more complex, the problem becomes exponentially more complicated, requiring immediate attention to resolve, through regulations, SBOMs (Software Bills of Materials), embedded security, and cybersecurity solutions.”

BlackBerry, a seasoned security vendor, commented on the study. “Enhancing the security of software supply chains is critical for national security and for building a trusted digital world,” said Arvind Raman, CISO, BlackBerry. “BlackBerry welcomes this study from Juniper Research, which outlines why software supply chain security practices must be adopted by all industries, and we are pleased to be recognised for our best-in-class security solutions that address this market need. BlackBerry has long been a champion of built-in security and a pioneer of cybersecurity, which is why we have earned the trust of organisations around the world.”

The study also examines the importance of software supply chains across several verticals, including, financial services, government, automotive, and healthcare, making the study vital reading for key stakeholders in those high-risk industries.


Ransom attacks in the cloud are a perennially popular topic of discussion in the cloud security...
Talent and training partner, mthree, which supports major global tech, banking, and business...
Cloud-native organisations to gain full understanding over every identity in the cloud, secured...
MSSPs identify regulatory compliance as additional factor as organisations seek to shift...
Orange Business (Norway), a global leader in digital services, has selected ARMO’s advanced...
Gigamon and Exclusive Networks have expanded their existing distribution partnership, broadening...
Trustwave and Cybereason have announced a definitive merger agreement offering a comprehensive and...
FortiDLP’s unified approach to data protection enables enterprise organizations to anticipate and...