Information security for the supply chain is critical because vulnerabilities can undermine national security. For example, in 2010 Stuxnet targeted Iran's nuclear facilities by infecting industrial control systems via infected USB drives. More recently in 2021, suspected Russian hackers breached US software provider SolarWinds, compromising nine government agencies and around 100 private companies.