Several Dutch government institutions, including the AIVD, the NCSC and the NCTV, have created a 'Cyber Check' that allows entrepreneurs to see whether they are at risk of influence within their supply chains by countries with an offensive cyber program
p>The Cyber Check was created by the General Intelligence and Security Service, the National Coordinator for Counterterrorism and Security, the National Cyber Security Center and the CIO Rijk. The guide contains several tips for organizations to map 'supply chains', their deliveries for products and services, and to then see whether they are at risk of cyber attacks or espionage through those supply chains. This specifically concerns protection against risks from countries with an offensive cyber program, such as Russia, China, North Korea or Iran. These countries “can influence the supply chain during the development or maintenance of products and services,” the authorities write. Through local laws and regulations, they can force companies or citizens to 'build digital backdoors into their product or service'. These countries can spy in the Netherlands or access important infrastructure in other ways.
The Cyber Check consists of a step-by-step program with which entrepreneurs can determine, among other things, how great the risk they are running. This way, administrators can look at where an OS or firmware is made. The check also describes what risks this entails and what entrepreneurs can do to reduce the risk.
/i/2006646964.png?f=imagenormal)