Operation SignSight: Supply-chain attack against a certification authority in Southeast Asia. ESET researchers have uncovered a supply-chain attack on the website of a government in Southeast Asia. Award-winning news, views, and insight from the ESET security community. Just a few weeks after the supply-chain attack on the Able Desktop software , another similar attack occurred on the website of the Vietnam Government Certification Authority (VGCA): ca.gov.vn . The attackers modified two of the software installers available for download on this website and added a backdoor in order to compromise users of the legitimate application. Third-party company: Vietnam Certification Authority.