Supply chain attacks, also known as third-party attacks, are a growing threat in cyberspace, where attackers gain access to a network or system by manipulating a supplier or vendor. They deliver malware through these suppliers or vendors, infiltrating the system by gaining unauthorised access. These attacks can be hazardous as they exploit the trust between organisations and their suppliers, making them difficult to detect and prevent.