Blog Archives | Page 7 of 125

Software Bill of Materials (SBOM): Securing Your Cloud-Native Supply Chain

Orca Platform

Software Bill of Materials (SBOM): Securing Your Cloud-Native Supply Chain

According to a recent World Economic Forum’s Global Cybersecurity Outlook 2025 report, software supply chain vulnerabilities are the leading cybersecurity...

Lior Samuni Todd Stansfield

Jun 04, 2025

Enriching Zscaler UVM with Deep Vulnerability Intelligence from Orca

Orca Platform

Enriching Zscaler UVM with Deep Vulnerability Intelligence from Orca

According to VulnCheck, exploitation of publicly disclosed CVEs rose by 20% year-over-year in 2024. This trend reflects a broader rise...

Alon Steinmetz Todd Stansfield

Jun 03, 2025

What is CSPM (Cloud Security Posture Management)?

Cloud Security Learning

What is CSPM (Cloud Security Posture Management)?

Table of contentsKey TakeawaysIntroductionWhat is CSPM?Understanding Cloud Security Posture Management and how it protects your cloudHow does Cloud Security Posture...

Todd Stansfield

May 27, 2025

Cloud Security Learning

A Guide to Vulnerability Management

Table of contentsKey TakeawaysIntroductionWhat is Vulnerability Management?Vulnerability management vs. penetration testing The vulnerability management process1. Asset inventory and classification2. Vulnerability prioritization...

Todd Stansfield

May 27, 2025

What is CNAPP (Cloud Native Application Protection Platform)?

Cloud Security Learning

What is CNAPP (Cloud Native Application Protection Platform)?

Table of contentsKey TakeawaysIntroductionWhat is CNAPP? (CNAPP Defined)Understanding Cloud-Native ApplicationsThe Emergence of CNAPPKey Components of a CNAPP1. Cloud Security Posture...

Faith Kilonzi

May 27, 2025

Securing Non-Human Identities (NHI): From Secrets to Service Accounts

Orca Platform

Securing Non-Human Identities (NHI): From Secrets to Service Accounts

Non-human identities (NHI) play an essential role in cloud computing, helping to deliver many of its core benefits—from scalability to...

Yael Yablonski Todd Stansfield

May 27, 2025

CVE-2025-31324 Exploited in the Wild: What We’ve Found in the Aftermath

Research

CVE-2025-31324 Exploited in the Wild: What We’ve Found in the Aftermath

In late April 2025, SAP disclosed CVE-2025-31324, a critical vulnerability in SAP NetWeaver’s Visual Composer development server. The flaw—stemming from...

Yonatan Broder

May 21, 2025

Bringing Memory to AI: A Look at A2A and MCP-like Technologies Across Platforms

Research

Bringing Memory to AI: A Look at A2A and MCP-like Technologies Across Platforms

Over the last year, we've witnessed a pivotal shift in how large language models (LLMs) are used - not just...

Ofir Yakobi Shir Sadon

May 19, 2025

Discovered Vulnerabilities

Kubernetes CRD Abstraction Risks in kro

Executive Summary: The Orca Research Pod has discovered CVE-2025-48710 in kro (Kube Resource Orchestrator) where an attacker could introduce a malicious CustomResourceDefinition...

Roi Nisimi

May 13, 2025

Blog

Software Bill of Materials (SBOM): Securing Your Cloud-Native Supply Chain

Enriching Zscaler UVM with Deep Vulnerability Intelligence from Orca

What is CSPM (Cloud Security Posture Management)?

A Guide to Vulnerability Management

What is CNAPP (Cloud Native Application Protection Platform)?

Securing Non-Human Identities (NHI): From Secrets to Service Accounts

CVE-2025-31324 Exploited in the Wild: What We’ve Found in the Aftermath

Bringing Memory to AI: A Look at A2A and MCP-like Technologies Across Platforms

Kubernetes CRD Abstraction Risks in kro

Cloud Security Platform

Technology Ecosystem

By Solution

By Industry

Comparisons