Sustainability in AV, Conferencing & Collaboration, Digital Signage, Business of AV, IT and Networked AV, and 4 more

The Growing Threat of Third-Party Cyber Incidents

71% of CISOs were hit by a third-party security incident this year!
Go to the profile of Benedict Onodu. CTS.MBCS
Benedict Onodu. CTS.MBCS
AV Governance. Risk and Compliance (GRC) Consultant, Experian
The Growing Threat of Third-Party Cyber Incidents
Like

Share this post

Choose a social network to share with.

Share with...

This is a representation of how your post may appear on social media. The actual post will vary between social networks

Do you know that 71% of CISOs were hit by a third-party security incident this year? And 5% of organizations faced ten or more. Also, The 2025 Verizon DBIR confirms it; third-party involvement in breaches has doubled, surging from 15% to nearly 30%. 

These are from recent survey by SecurityScorecard. 
Wondering why the the relatively steep rise in Third Party incidents?

Because attackers aren’t breaching, they’re logging in. They’re exploiting OAuth tokens, misconfigured permissions, and inherited trust across cloud platforms, control systems, and vendor APIs.

🎯 In AV and enterprise environments, where integrations are essential, this risk is amplified. The truth is there should be no trade-off between smart and secure systems. We must build systems that are intelligent, connected and resilient by design.

What we can do?
🔐 Evolve Zero Trust for cloud integrations with no implicit access.

📊 Ensure continuous posture monitoring, especially for vendor-connected systems.

🤖Deploying AI-powered vulnerability management tools, to detect, prioritize, and remediate risks at machine speed.

📜 Require your vendors to demonstrate ISO 27001 & 42001 alignment to hold them to the same standard you uphold internally.

🛡️ The AV/IT stack is no longer isolated. It’s part of the enterprise fabric. Security isn’t a bolt-on, it’s a design principle. AV systems deserve uncompromising security. We don’t have to choose, we can and must have both.

Go to the profile of Benedict Onodu. CTS.MBCS
Benedict Onodu. CTS.MBCS (He/Him)
AV Governance. Risk and Compliance (GRC) Consultant, Experian

A CTS with more than 20 years in Pro AV.With credentials including ISO 27001 Practitioner, CompTIA Security+, AVIXA CTS, and service as a member of the AVIXA Standards Steering Committee, I bring a multidisciplinary perspective that spans security governance, systems engineering, AV risk, and operational resilience. I understand AI as a socio‑technical system, where risks extend across architecture, data flows, user behaviour, and integrated AV/UC environments. 

i've led the design and optimisation of secure collaboration environments — from Microsoft Teams to enterprise meeting rooms and hybrid working platforms — supporting high‑stakes spaces such as Board meetings, AGMs, and multi‑site collaboration.

I am now expanding my leadership into AI governance and responsible technology, developing capability in ISO/IEC 42001 (AIMS) and the NIST AI RMF to help organisations operationalise AI safely, ethically, and at scale

Please sign in or register for FREE

If you are a registered user on AVIXA Xchange, please sign in

Sign In Register

  • Xchange Advocates are recognized AV/IT industry thought leaders and influencers. We invite you to connect with them and follow their activity across the community as they offer valuable insights and expertise while advocating for and building awareness of the AV industry.

    Meet the Advocates

Recommended Content

Cookies

We and selected partners, use cookies or similar technologies as specified in the cookie policy and privacy policy.

You can consent to the use of such technologies by closing this notice.

Cookie Control

Customise your preferences for any tracking technology

The following allows you to customize your consent preferences for any tracking technology used to help us achieve the features and activities described below. To learn more about how these trackers help us and how they work, refer to the cookie policy. You may review and change your preferences at any time.

See the full cookie policy See the full privacy policy
More information

These trackers are used for activities that are strictly necessary to operate or deliver the service you requested from us and, therefore, do not require you to consent.

More information

These trackers help us to deliver personalized marketing content and to operate, serve and track ads.

More information

These trackers help us to deliver personalized marketing content to you based on your behaviour and to operate, serve and track social advertising.

More information

These trackers help us to measure traffic and analyze your behaviour with the goal of improving our service.

More information

These trackers help us to provide a personalized user experience by improving the quality of your preference management options, and by enabling the interaction with external networks and platforms.