Blog Archives | Orca Security

Supply Chain Attacks: What Are They and Why Should You Care?

Thought Leadership

Supply Chain Attacks: What Are They and Why Should You Care?

Few threats capture the complexity of today’s digital ecosystem quite like supply chain attacks. These incidents don’t just exploit technical...

Bar Kaduri

Oct 22, 2025

Password Tips for Everyday Users: How to Protect Your Accounts

Cloud Security Insights

Password Tips for Everyday Users: How to Protect Your Accounts

It wouldn’t be cybersecurity awareness month without a blog about the importance of password hygiene. I probably don’t have to...

Todd Stansfield

Oct 15, 2025

How AI is Changing Cybersecurity (for Good and Bad)

Cloud Security Insights

How AI is Changing Cybersecurity (for Good and Bad)

Artificial intelligence (AI) is rapidly reshaping the cybersecurity landscape. According to the 2025 State of Cloud Security Report, AI adoption...

Tim Chase

Oct 08, 2025

Introducing the new Web & API Exposure Posture Framework: Take an “outside-in” view to protect your cloud native applications

Orca Platform

Introducing the new Web & API Exposure Posture Framework: Take an “outside-in” view to protect your cloud native applications

Picture this: You're a security professional staring at yet another dashboard, trying to make sense of your organization's sprawling digital...

Ori Koral Ashleigh Lee

Oct 07, 2025

Addressing Multi-Cloud Security and Compliance for Federal Agencies: The Orca Approach

Orca Platform

Addressing Multi-Cloud Security and Compliance for Federal Agencies: The Orca Approach

There are two key benefits for federal departments that choose a multi-cloud strategy. First, using multiple cloud providers can improve...

Ashleigh Lee

Oct 01, 2025

pull_request_nightmare Part 2: Exploiting GitHub Actions for RCE and Supply Chain

Discovered Vulnerabilities

pull_request_nightmare Part 2: Exploiting GitHub Actions for RCE and Supply Chain

Executive summary We have managed to successfully compromise repositories owned by Microsoft, Google, Nvidia and many more using a single...

Roi Nisimi

Sep 30, 2025

Securing Your Source Code: A Critical Defense Against Modern Threats

Cloud Security Insights

Securing Your Source Code: A Critical Defense Against Modern Threats

Source code has become one of the most valuable and vulnerable assets organizations possess. As development teams increasingly rely on...

Tim Chase

Sep 25, 2025

pull_request_nightmare Part 1: Exploiting GitHub Actions for RCE and Supply Chain Attacks

Discovered Vulnerabilities

pull_request_nightmare Part 1: Exploiting GitHub Actions for RCE and Supply Chain Attacks

Executive Summary: The Orca Research Pod has uncovered critical security risks across several high-profile open source repositories that relied on...

Roi Nisimi

Sep 24, 2025

2025 GigaOm Radar Report for CNAPP: Orca Security Named Leader

Orca Platform

2025 GigaOm Radar Report for CNAPP: Orca Security Named Leader

We’re proud to share that Orca Security has been recognized as a Leader in the 2025 GigaOm Radar Report for...

Gil Geron Todd Stansfield

Sep 23, 2025

Blog

Supply Chain Attacks: What Are They and Why Should You Care?

Password Tips for Everyday Users: How to Protect Your Accounts

How AI is Changing Cybersecurity (for Good and Bad)

Introducing the new Web & API Exposure Posture Framework: Take an “outside-in” view to protect your cloud native applications

Addressing Multi-Cloud Security and Compliance for Federal Agencies: The Orca Approach

pull_request_nightmare Part 2: Exploiting GitHub Actions for RCE and Supply Chain

Securing Your Source Code: A Critical Defense Against Modern Threats

pull_request_nightmare Part 1: Exploiting GitHub Actions for RCE and Supply Chain Attacks

2025 GigaOm Radar Report for CNAPP: Orca Security Named Leader

Cloud Security Platform

Technology Ecosystem

By Solution

By Industry

Comparisons