Tag
incident-postmortem
Safeguard articles tagged "incident-postmortem" — guides, analysis, and best practices for software supply chain and application security.
2 articles
Infrastructure Security
When the Cloud Pulls the Plug: The GCP Account Suspension That Took Railway Down (May 19, 2026)
On May 19, 2026, Google Cloud automatically suspended Railway's production account, taking down a platform fronting roughly 10 million services for about eight hours. The root cause was not a breach but a control-plane dependency and a provider action with no human in the loop.
May 21, 202613 min read
Incident Postmortem
GitHub VS Code Extension Breach (20 May 2026): What Happened, How It Worked, and What to Do Monday Morning
GitHub disclosed on 20 May 2026 that a poisoned VS Code Marketplace extension was used to exfiltrate roughly 3,800 private repositories from enterprise engineering orgs, landing in the middle of a broader May 2026 wave of developer-surface supply chain attacks.
May 20, 202616 min read