Discovered Vulnerabilities
Massive npm Malware Campaign Infects Popular Packages, @ctrl/tinycolor Affected
TL;DR A new software supply chain attack has been identified, targeting the npm registry and this time impacting more than...
Blog
Orca Platform
Expanded Runtime Protection for Windows Workloads
When it comes to hybrid cloud security, one of the biggest blind spots remains Windows-based workloads. Despite their central role...
Discovered Vulnerabilities
NPM Packages Compromised: Maintainer ‘qix’ Hacked
Reports have emerged of a major supply chain attack impacting numerous NPM packages maintained by the developer known as “qix.”...
Orca Platform
Git Hooks: Prevent Secrets Exposure with Pre-Commit and Pre-Receive Protection
According to the 2025 State of Cloud Security Report, 85% of organizations have plaintext secrets embedded in their source code...
Discovered Vulnerabilities
s1ngularity Supply Chain Attack: What It Means for Cloud and AI Security
On August 26, 2025, the open-source ecosystem was shaken by a new supply chain attack that targeted Nx, a popular...
Orca Platform
Discovering Leaked Passwords: How to Strengthen Your Cloud Defense
Stolen credentials remain one of the leading causes of data breaches and one of the costliest. According to IBM’s 2025...
Research
10 Most Popular AI Models of 2025
According to Gartner, worldwide spending on generative AI is set to reach $644 billion (USD) in 2025, a nearly 77%...
Orca Platform
Just-in-Time (JIT) Access: A Flexible, Superior Approach to CIEM
According to the 2025 State of Cloud Security Report, 78% of organizations have at least one IAM role that has...
Orca Platform
Orca Security Successfully Completes IRAP Assessment at Protected Level
We are thrilled to announce that the Orca Cloud Security Platform has completed the Australian IRAP assessment at the Protected...