CYBERSECURITY
ith cyber threats surging, securing software supply chains against increasingly sophisticated malicious acts has become a top priority for businesses worldwide. Kory Daniels has a front-row seat to this critical challenge and, as Chief Security and Trust Officer of global cybersecurity company LevelBlue – the joint venture between AT & T and WillJam Ventures – he advises companies on the strategies they must adopt to continue to protect themselves.
With deep expertise in risk management, corporate resilience and digital trust, Kory leads LevelBlue’ s efforts to protect enterprises from known and emerging cyber risks by leveraging advanced data analytics and AI-driven insights. In conversation with Technology Magazine, Kory reveals how LevelBlue empowers businesses to navigate the complex software supply chain ecosystem securely, the growing impacts of the API economy and why foundational software engineering principles remain indispensable amidst rapid automation and AI adoption.
Q. WHAT WERE THE PRIMARY FACTORS DRIVING THE SURGE IN SOFTWARE SUPPLY CHAIN ATTACKS IN 2025? HOW IS THE GROWING API ECONOMY INFLUENCING THESE RISKS?
» Software supply chain attacks have surged as attackers exploit the growing interconnectedness of modern software ecosystems.
The widespread use of open-source components, automation tools and continuous integration systems has created new opportunities for attackers to achieve their objectives taking advantage of new, or evolving business exposures. Our research shows that supply chain resilience remains low on the corporate agenda, with only 25 % of executives prioritising supplier security engagement.
As the API economy expands, the number of connections between services and partners continues to grow, amplifying the potential impact of a single misconfiguration or compromised credential.
Poorly monitored devices and unnecessary access rights can give attackers a way into trusted environments. These dynamics have transformed supply chains into one of the most attractive and efficient targets for attackers, making proactive risk management and transparency essential.
Q. HOW DO THE DIVERSE SOURCES OF SOFTWARE – INCLUDING INTERNAL DEVELOPMENT, EXTERNAL VENDORS, OPEN-SOURCE LIBRARIES AND AI-GENERATED CODE – COMPOUND THE CHALLENGES
ORGANISATIONS FACE IN SECURING THEIR SUPPLY CHAINS?
» Today’ s software supply chain is defined by speed, scale and interdependence. Internal development teams are under constant pressure to deliver, which can result in inconsistent security practices and limited testing coverage.
136 December 2025