Blog Archives | Page 39 of 137

CVE-2023-4863: Understanding the libwebp Vulnerability in the Cloud

Cloud Security Insights

CVE-2023-4863: Understanding the libwebp Vulnerability in the Cloud

On September 11th, 2023, Google published an update for Chrome that fixed CVE-2023-4863, “Heap Buffer Overflow Vulnerability in WebP.” Firefox...

Neil Carpenter Ashley Borel

Sep 29, 2023

Settling the Debate: Is Cloud Security a Developer, DevOps, or Security Team Responsibility?

Settling the Debate: Is Cloud Security a Developer, DevOps, or Security Team Responsibility?

No matter what role you work in – software development, DevOps, ITOps, security, or any other technical position – you...

Chris Tozzi

Sep 25, 2023

How to Give Developers Cloud Security Tools They’ll Actually Love

Cloud Security Insights

How to Give Developers Cloud Security Tools They’ll Actually Love

There are few better ways to make developers resent cybersecurity than to impose security tools on them that get in...

Chris Tozzi

Sep 18, 2023

Orca Security Virtual Cloud Camps Activate Hands-On Cloud Security Skills

Orca Platform

Orca Security Virtual Cloud Camps Activate Hands-On Cloud Security Skills

In 2019, Harvard published findings from a study on active versus traditional (or “passive”) learning in an effort to determine...

Aimee Savran

Sep 14, 2023

Azure HDInsight Riddled With XSS Vulnerabilities via Apache Services

Discovered Vulnerabilities

Azure HDInsight Riddled With XSS Vulnerabilities via Apache Services

The Orca Research Pod recently discovered a total of 8 important Cross-Site Scripting (XSS) vulnerabilities within various Apache services on...

Lidor Ben Shitrit

Sep 13, 2023

How Threat Research Can Inform Your Organization’s Cloud Security Strategy

Cloud Security Insights

How Threat Research Can Inform Your Organization’s Cloud Security Strategy

This post was originally published on The New Stack. As the world has wholeheartedly embraced online-first living in the wake...

Zachary Flower

Sep 11, 2023

Orca’s AI-powered Cloud Asset Search is as Intuitive as Asking a Question

Orca Platform

Orca’s AI-powered Cloud Asset Search is as Intuitive as Asking a Question

As more and more workloads and applications are moved to the cloud, many organizations struggle to keep track of all...

Shai Alon Deborah Galea

Sep 07, 2023

Cloud Security Insights

CWPP vs. CSPM: Key Comparisons

This post was originally published to The New Stack. In a world where everything from our phones to our refrigerators...

Zachary Flower

Sep 06, 2023

Maintaining Automated ISO 27001 Compliance with Orca Security

Orca Platform

Maintaining Automated ISO 27001 Compliance with Orca Security

The ISO 27001 compliance framework helps organizations maintain the confidentiality, integrity, and availability of their information assets. Beyond the need...

Vini Mostovoy Jason Silberman

Sep 06, 2023

Blog

CVE-2023-4863: Understanding the libwebp Vulnerability in the Cloud

Settling the Debate: Is Cloud Security a Developer, DevOps, or Security Team Responsibility?

How to Give Developers Cloud Security Tools They’ll Actually Love

Orca Security Virtual Cloud Camps Activate Hands-On Cloud Security Skills

Azure HDInsight Riddled With XSS Vulnerabilities via Apache Services

How Threat Research Can Inform Your Organization’s Cloud Security Strategy

Orca’s AI-powered Cloud Asset Search is as Intuitive as Asking a Question

CWPP vs. CSPM: Key Comparisons

Maintaining Automated ISO 27001 Compliance with Orca Security

Cloud Security Platform

Technology Ecosystem

By Solution

By Industry

Comparisons