Cloud Security Learning
What is Cloud Security?
Table of contentsIntroduction to cloud securityKey components of cloud security2025 State of Cloud Security ReportCloud security challengesTypes of cloud security...
Blog
Discovered Vulnerabilities
CVE-2025-59287 Explained: Critical WSUS RCE Vulnerability Actively Exploited
On October 23rd, Microsoft released an unusual out-of-band security patch for CVE-2025-59287, a remote code execution vulnerability in WSUS (Windows...
Thought Leadership
Supply Chain Attacks: What Are They and Why Should You Care?
Few threats capture the complexity of today’s digital ecosystem quite like supply chain attacks. These incidents don’t just exploit technical...
Cloud Security Insights
Password Tips for Everyday Users: How to Protect Your Accounts
It wouldn’t be cybersecurity awareness month without a blog about the importance of password hygiene. I probably don’t have to...
Cloud Security Insights
How AI is Changing Cybersecurity (for Good and Bad)
Artificial intelligence (AI) is rapidly reshaping the cybersecurity landscape. According to the 2025 State of Cloud Security Report, AI adoption...
Orca Platform
Introducing the new Web & API Exposure Posture Framework: Take an “outside-in” view to protect your cloud native applications
Picture this: You're a security professional staring at yet another dashboard, trying to make sense of your organization's sprawling digital...
Orca Platform
Addressing Multi-Cloud Security and Compliance for Federal Agencies: The Orca Approach
There are two key benefits for federal departments that choose a multi-cloud strategy. First, using multiple cloud providers can improve...
Discovered Vulnerabilities
pull_request_nightmare Part 2: Exploiting GitHub Actions for RCE and Supply Chain
Executive summary We have managed to successfully compromise repositories owned by Microsoft, Google, Nvidia and many more using a single...
Cloud Security Insights
Securing Your Source Code: A Critical Defense Against Modern Threats
Source code has become one of the most valuable and vulnerable assets organizations possess. As development teams increasingly rely on...