Blog Archives | Page 110 of 125

SynLapse – Technical Details for Critical Azure Synapse Vulnerability

Discovered Vulnerabilities

SynLapse – Technical Details for Critical Azure Synapse Vulnerability

Recently, the Orca Security research team discovered SynLapse, a tenant separation violation vulnerability in the Microsoft Azure Synapse environment.

Tzah Pahima

Jun 14, 2022

Supply Chain Attack: CTX Account Takeover and PHPass Hijack Explained

‘Orca Watch’ Series

Supply Chain Attack: CTX Account Takeover and PHPass Hijack Explained

A threat actor recently hacked a popular PyPi repo on GitHub, setting off a supply chain attack that could have...

Lidor Ben Shitrit

Jun 13, 2022

Cloud Security’s Shared Responsibility Model Problem

CISO Corner

Cloud Security’s Shared Responsibility Model Problem

Without clear effort to make sure that nothing falls between the two (or more) teams, something always gets missed.

Andy Ellis

Jun 09, 2022

3 Ways to Improve Kubernetes Security With CIS Benchmarks

Orca Platform

3 Ways to Improve Kubernetes Security With CIS Benchmarks

CIS benchmarks for Kubernetes can significantly simplify and improve the security of your Kubernetes systems.

John Alexander

Jun 08, 2022

Aws Role abnormal behavior: API calls with unusual user agent

Aws Role abnormal behavior: API calls with unusual user agent

AWS API call was detected from IP address which is categorized as malicious

Orca Security

Jun 07, 2022

Route53 Record Pointing to Invalid Resource

Route53 Record Pointing to Invalid Resource

Orca has detected that certain DNS resource record sets under the hosted zone are aliased to resources which may not...

Orca Security

Jun 07, 2022

Host OS reaching End of Support

The installed operating system {Compute.DistributionName} {Compute.DistributionVersion} is about to reach end of support in less than 90 days, starting {Compute.OsEndOfSupport}....

Orca Security

Jun 07, 2022