Gartner® REPORT

Mitigate Enterprise Software Supply Chain Security Risks

According to recent report by Gartner®, 61% of U.S. businesses were directly impacted by a software supply chain attack in the 12-month period ending in April 2023.

Respond to the surge in software supply chain attacks with new practices from Gartner®. Evaluate ways your software may still be vulnerable and see the recommended changes security and risk management leaders can make to protect their organization and prevent attacks.

By 2026, at least 60% of organizations procuring mission-critical software solutions will mandate software bill of materials (SBOM) disclosures in their license and support agreements, up from less than 5% in 2022.


With growing regulations and compliance requirements, the report gives a clear call to action, “security and risk management (SRM) leaders must act proactively and aggressively to build resiliency and respond to growing threats."

Struggling to Respond to Vulnerabilities? See recommendations by Gartner® on preventing software supply chain attacks. 




GARTNER is a registered trademark and service mark of Gartner, Inc. and/or its affiliates in the U.S. and internationally and is used herein with permission. All rights reserved.

Gartner Reports: Gartner, Mitigate Enterprise Software Supply Chain Security Risks, Dale Gardner, 31 October 2023.

Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.