Ofir Yakobi, Shir Sadon, Author at Orca Security

Bringing Memory to AI: A Look at A2A and MCP-like Technologies Across Platforms

Research

Bringing Memory to AI: A Look at A2A and MCP-like Technologies Across Platforms

Over the last year, we've witnessed a pivotal shift in how large language models (LLMs) are used - not just...

May 19, 2025

‘IngressNightmare’: Critical Vulnerabilities in Ingress NGINX Controller Allow Unauthenticated Remote Code Execution

Discovered Vulnerabilities

‘IngressNightmare’: Critical Vulnerabilities in Ingress NGINX Controller Allow Unauthenticated Remote Code Execution

On March 24th, 2025, Wiz’s research team published information on five vulnerabilities in the Ingress NGINX Controller for Kubernetes (ingress-nginx)...

Mar 25, 2025

GitHub Action Compromised: tj-actions/changed-files Malicious Commit

Discovered Vulnerabilities

GitHub Action Compromised: tj-actions/changed-files Malicious Commit

Over the past weekend, security researchers discovered that the popular GitHub Action tj-actions/changed-files has been compromised. Malicious code added to...

Mar 17, 2025

2024 State of AI Security Report Reveals Top AI Risks Seen in the Wild

Orca Platform

2024 State of AI Security Report Reveals Top AI Risks Seen in the Wild

Orca Security today released its inaugural State of AI Security Report, a deep dive into the security risks of deployed...

Sep 18, 2024

Meet AI Goat: The First Open Source AI Security Learning Environment Based on the OWASP Top 10 ML Risks

Technical Deep Dives

Meet AI Goat: The First Open Source AI Security Learning Environment Based on the OWASP Top 10 ML Risks

We’re excited to announce that the Orca Research Pod has launched AI Goat, the first open source AI security hands-on...

Aug 08, 2024

Breaking Down APT29’s Latest Tactics and How to Defend Against Them

‘Orca Watch’ Series

Breaking Down APT29’s Latest Tactics and How to Defend Against Them

Recently, the US National Security Agency (NSA) joined United Kingdom’s National Cyber Security Center (NCSC) in releasing an advisory detailing...

Mar 14, 2024

2024 State of Cloud Security Report Shows That More Risk Prioritization is Needed

‘Orca Watch’ Series

2024 State of Cloud Security Report Shows That More Risk Prioritization is Needed

Orca Security has released the 2024 State of Cloud Security Report, which leverages unique insights into cloud risks captured by...

Feb 27, 2024

Detecting Malicious Actors By Observing Commands in Shell History

Technical Deep Dives

Detecting Malicious Actors By Observing Commands in Shell History

Among the myriad techniques and tools at the disposal of cybersecurity experts, one subtle yet powerful method often goes unnoticed:...

Feb 21, 2024

All articles by Shir Sadon

Bringing Memory to AI: A Look at A2A and MCP-like Technologies Across Platforms

‘IngressNightmare’: Critical Vulnerabilities in Ingress NGINX Controller Allow Unauthenticated Remote Code Execution

GitHub Action Compromised: tj-actions/changed-files Malicious Commit

2024 State of AI Security Report Reveals Top AI Risks Seen in the Wild

Meet AI Goat: The First Open Source AI Security Learning Environment Based on the OWASP Top 10 ML Risks

Breaking Down APT29’s Latest Tactics and How to Defend Against Them

2024 State of Cloud Security Report Shows That More Risk Prioritization is Needed

Detecting Malicious Actors By Observing Commands in Shell History

See Orca Security in Action

Cloud Security Platform

Technology Ecosystem

By Solution

By Industry

Comparisons