Devtoberfest Security Week Round Table Discussion. Supply chain attacks are a set of attack strategies with the goal to compromise companies mostly through vulnerabilities in their supply chain. Not only since the SolarWinds attack last year, attackers have been focusing more and more on finding vulnerabilities in their victims periphery to gain access the target network. The heavy usage of Open Source and new technologies like containers but also new operation approaches like DevOps and Infrastructure as Code add new attack vectors. This new attack vectors are challenging because they cannot easily prevented by traditional security systems and processes. In this talk, we will discuss the different types of supply chain attacks, we try to shape some light on the question who is involved and responsible and we will discuss how the likelihood of successful supply chain attacks can be reduced.
With
Michele Chubirka, SAP
Torsten Dangel, SAP
Helen Oakley, SAP
Sachar Paulus, Professor at University Mannheim
Ralf Wigand, National IT Compliance Officer at Microsoft Germany
![](https://i.ytimg.com/vi/XTKbRdaiKEg/maxresdefault.jpg)