Orca Research Pod | Orca Security

Our expert security research team discovers and analyzes cloud risks and vulnerabilities to strengthen the Orca platform and promote cloud security best practices. Leveraging our unique insights into current and emerging cloud risks captured from the Orca platform, it is our mission to make the cloud a safer place for all organizations.

How Orca Found Server-Side Request Forgery (SSRF) Vulnerabilities in Four Different Azure Services

Read Now

We discover and analyze critical cloud risks and vulnerabilities. Our Orca Research Pod by the numbers:

Team of Security
Researchers

1800

Cloud Security
Risks

79

Years of Industry Experience

12M+

Workloads
Scanned

Vulnerabilities uncovered by the Orca Research Pod

January 17, 2023

How Orca Found Server-Side Request Forgery (SSRF) Vulnerabilities in Four Different Azure Services

The Orca Research Pod found 4 different SSRF vulnerabilities and were able to take advantage of these flaws in some of the Azure Services.

November 1, 2022

CosMiss: Azure Cosmos DB Notebook Remote Code Execution Vulnerability

The Orca Research Pod has discovered CosMiss, a vulnerability in Microsoft Azure Cosmos DB where authentication checks were missing from Cosmos DB Notebooks.

October 19, 2022

FabriXss: Critical Vulnerability in Azure Service Fabric Explorer (SFX)

The Orca Research Pod discovered FabriXss, a vulnerability in Azure Service Fabric Explorer that allows attackers to gain full Administrator permissions.

September 13, 2022

2022 State of Public Cloud Security Report Reveals Critical Cloud Security Gaps

Orca Security has released the 2022 State of the Public Cloud Security report, which provides crucial insights into the current state of public cloud security.

June 14, 2022

Synlapse: Critical Cross-Account Vulnerability in Microsoft Azure Synapse Analytics Service

Recently, the Orca Security research team discovered SynLapse, a tenant separation violation vulnerability in the Microsoft Azure Synapse environment.

AutoWarp is a serious vulnerability in Microsoft Azure Automation Service that allows access to a server that manages the sandboxes of other customers.

March 7, 2022

AutoWarp: Critical Cross-Account Vulnerability in Microsoft Azure Automation Service

AutoWarp is a critical vulnerability in Microsoft Azure Automation Service that allows unauthorized access to other customer accounts using the service.

February 4, 2022

A Tale About Vulnerability Research and Early Detection

Databricks’ number one priority is the safeguarding of our customer data. As part of our defense-in-depth approach, we work with security researchers in the community to proactively discover and remediate potential vulnerabilities in the Databricks platform so that they may be fixed before they become a risk to our customers.

January 13, 2022

Superglue: AWS Glue Vulnerability

The Orca Security research team discovered a serious security issue in the AWS Glue service that could allow an actor to access data of other AWS Glue customers, even data related to other services in customer accounts. The exploit was a complex multi-step process and was ultimately possible due to an internal misconfiguration. The Glue service has access to large quantities of data, making it a highly attractive target.

January 13, 2022

BreakingFormation: AWS CloudFormation Vulnerability

This vulnerability leveraged an anomaly in the way that CloudFormation (the service that enables you to easily provision AWS resources using templates) renders templates that allowed a potential attacker to trigger an XXE vulnerability, in order to read files and perform HTTP requests on behalf of the server. Our research team believes that given the data found on the host, an attacker could have used this vulnerability to bypass tenant boundaries, giving them privileged access to almost any resource in AWS.