National Cybersecurity Awareness Month: What You Need to Know
It’s October! You know what that means… and no it’s not about candy and costumes (but trust me when I...
Blog
Cloud Security Insights
CVE-2023-4863: Understanding the libwebp Vulnerability in the Cloud
On September 11th, 2023, Google published an update for Chrome that fixed CVE-2023-4863, “Heap Buffer Overflow Vulnerability in WebP.” Firefox...
Settling the Debate: Is Cloud Security a Developer, DevOps, or Security Team Responsibility?
No matter what role you work in – software development, DevOps, ITOps, security, or any other technical position – you...
Cloud Security Insights
How to Give Developers Cloud Security Tools They’ll Actually Love
There are few better ways to make developers resent cybersecurity than to impose security tools on them that get in...
Orca Platform
Orca Security Virtual Cloud Camps Activate Hands-On Cloud Security Skills
In 2019, Harvard published findings from a study on active versus traditional (or “passive”) learning in an effort to determine...
Discovered Vulnerabilities
Azure HDInsight Riddled With XSS Vulnerabilities via Apache Services
The Orca Research Pod recently discovered a total of 8 important Cross-Site Scripting (XSS) vulnerabilities within various Apache services on...
Cloud Security Insights
How Threat Research Can Inform Your Organization’s Cloud Security Strategy
This post was originally published on The New Stack. As the world has wholeheartedly embraced online-first living in the wake...
Orca Platform
Orca’s AI-powered Cloud Asset Search is as Intuitive as Asking a Question
As more and more workloads and applications are moved to the cloud, many organizations struggle to keep track of all...
Cloud Security Insights
CWPP vs. CSPM: Key Comparisons
This post was originally published to The New Stack. In a world where everything from our phones to our refrigerators...