Safeguard
Topic

Industry Analysis

In-depth guides and analysis on industry analysis from the Safeguard engineering team.

294 articles

Industry Analysis

FIN7: Financial-Sector Supply Chain Tradecraft

FIN7 has spent a decade evolving from POS malware to supply chain operations. A look at the current tradecraft and the implications for financial-sector defenders.

Nov 20, 20246 min read
Industry Analysis

The Software Composition Analysis Market in 2024: Consolidation and Evolution

The SCA market is maturing fast, with acquisitions, AI-powered analysis, and SBOM mandates reshaping the competitive landscape and what buyers should expect.

Nov 20, 20246 min read
Industry Analysis

Grafana Loki for Build Pipeline Logs: Patterns That Scale

Design a Loki-based log pipeline for CI/CD observability and supply chain forensics. Labels, retention, LogQL patterns, and cost discipline from the field.

Nov 12, 20247 min read
Industry Analysis

Foundation-Neutral Governance Evaluation

CNCF, Linux Foundation, Apache, Eclipse — each has a different governance model. A practical evaluation of what that means for projects considering adoption.

Oct 25, 20246 min read
Industry Analysis

Panther SIEM Supply Chain Rules: A Detection Engineering Playbook

Write Panther Python detections that catch package poisoning, CI token abuse, and registry compromise. Real rule examples, tuning patterns, and alert routing.

Oct 18, 20247 min read
Industry Analysis

Kimsuky Developer Targeting Analysis

Kimsuky has pivoted from diplomats to developers. A look at the tradecraft behind its supply-chain-flavored operations and what engineering orgs should do about it.

Oct 10, 20246 min read
Industry Analysis

Volt Typhoon: Living-Off-the-Land and Supply Chain

The PRC-linked pre-positioning group that scared DHS and the NSA into a public warning, and what it means for supply chain defenders.

Sep 30, 20246 min read
Industry Analysis

Open Source Foundation Governance Models

The Linux Foundation, Apache Software Foundation, CNCF, and Eclipse each codify different theories of how open source projects should be governed. The differences matter more than most adopters realize.

Sep 22, 20246 min read
Industry Analysis

Datadog Security for Supply Chain Monitoring

Using Datadog's Cloud SIEM, ASM, and logs pipeline to monitor software supply chain threats across CI/CD, registries, and runtime.

Sep 8, 20247 min read
Industry Analysis

Labyrinth Chollima and Open Source Targeting

Labyrinth Chollima's operations show a specific pattern — poisoned open source packages as initial access. A profile of the tradecraft and the defensive response.

Aug 28, 20246 min read
Industry Analysis

New Relic Security: Building a Supply Chain View

How to extend New Relic's APM and Vulnerability Management features into a working software supply chain dashboard for security and platform teams.

Aug 15, 20247 min read
Industry Analysis

SolarWinds Post-Incident Governance Changes Reviewed

Four years after SUNBURST, SolarWinds has rebuilt its SDLC around signed pipelines, parallel builds, and a new CSO office. How much of it is real?

Aug 14, 20245 min read
Industry Analysis (Page 23) — Supply Chain Security Blog | Safeguard