While there is currently not a lot of information available into how the breach of Digipolis occurred, the effects of the breach on the City of Antwerp are apparent. This attack is a recent example of a supply-chain attack, where a threat actor infiltrates one organization through a breach of another. Overall, the recommended strategy to protect against attacks such as these is to have a defense in depth strategy when it comes to security. Additionally, it is recommended to properly vet the security standards of any third-party software that the organization uses and to keep software up to date. In the end, some of these attacks may still go undetected. Due to this, it is recommended to implement the principle of least privilege regarding any third-party applications and accounts, limiting what they can do and what data they can access.
https://www.bleepingcomputer.com/news/security/antwerps-city-services-down-after-hackers-attack-digital-partner/
