Incident Analysis
In-depth guides and analysis on incident analysis from the Safeguard engineering team.
137 articles
CCleaner 2017: Anatomy of a Quiet Supply Chain Hit
The CCleaner backdoor of 2017 was among the first modern build-system compromises to achieve mass distribution through a trusted installer.
Equifax: The Supply Chain Angle Few Talked About
The 2017 Equifax breach is a case study in Apache Struts, inherited dependencies, and a vulnerability management process that mistook lists for action.
M.E.Doc and NotPetya: The Origin Story
The forensic detail of how M.E.Doc's update server became the delivery mechanism for NotPetya, and what it means for small-vendor risk.
NotPetya's Origin: A Supply Chain Story From Ukraine
NotPetya is remembered as ransomware. It was not. It was a supply chain wiper that detonated through Ukrainian tax software in June 2017.
WannaCry's Supply Chain Dimensions
WannaCry was not a supply chain attack in the usual sense. Its real supply chain story is EternalBlue, NSA leaks, and the patch cycle.