A Supply Chain Attack is a vector of attack where hackers attempt to compromise their target by exploiting vulnerabilities in a third-party vendor. Typically the hackers will target a company's third-party vendor in an attempt to abuse the trusted source's network to distribute a malicious payload downstream to their targeted users. Because third-parties are typically trusted sources, malicious payloads can easily bypass endpoint protection.