Blog Archives | Page 7 of 137

Credential‑Stealing Malware in LiteLLM Supply Chain Attack

‘Orca Watch’ Series

Credential‑Stealing Malware in LiteLLM Supply Chain Attack

Executive Summary A severe malware incident (no formal CVE yet, but tracked as a high‑risk supply chain compromise) was disclosed...

Roi Nisimi

Mar 25, 2026

Mission Accomplished: Orchestrate Your Remediation Strategy With Orca Missions

Orca Platform

Mission Accomplished: Orchestrate Your Remediation Strategy With Orca Missions

Table of contentsThe Problem: Alert Fatigue and Disconnected EffortsThe Solution: Organized, Outcome-Driven Security with Orca MissionsHow Orca Missions Work–A Closer...

Tyler Woo Meni Omaisy

Mar 25, 2026

The Orca Approach to Runtime AI Security

Data and AI Security

The Orca Approach to Runtime AI Security

The Runtime Gap: Why AI Security Can't Stop at Posture Most AI security conversations in 2025 centered on posture. What...

Ori Koral Dror Zalman Ashleigh Lee

Mar 24, 2026

CanisterWorm: When a CI/CD Breach Became a Self-Spreading npm Worm

‘Orca Watch’ Series

CanisterWorm: When a CI/CD Breach Became a Self-Spreading npm Worm

A supply chain compromise moved from CI pipelines into the npm ecosystem, stealing secrets, hijacking packages, and persisting on developer...

Tohar Braun

Mar 23, 2026

From Findings to Fixes with Code Reachability, AppSec Triage Agent, and the AppSec Dashboard

Application Security

From Findings to Fixes with Code Reachability, AppSec Triage Agent, and the AppSec Dashboard

Table of contentsKey FindingsIntroductionWhy Traditional AppSec Approaches Break DownFocusing on What Actually Runs (Code Reachability)Turning Findings into Action (AppSec Triage...

Guy Plotnik Jake Kramber

Mar 23, 2026

Introducing the Agentic Cloud Security Platform

Data and AI Security

Introducing the Agentic Cloud Security Platform

Table of contentsOrca’s AI agents: Ecosystem engineers for cloud-native appsWhy build AI agents for CNAPP?What we’re building: Agentic AI for...

Ashleigh Lee Amit Slowo Or Gabay

Mar 18, 2026

First Look: Orca’s RSAC 2026 Announcements

Data and AI Security

First Look: Orca’s RSAC 2026 Announcements

Over the past decade, protecting cloud-native applications has evolved. At first, security was reactive, driven by the traditional agent approach....

Ashleigh Lee

Mar 16, 2026

Beyond the Sticker Price: Understanding the True Cost of Your Security Tools

Thought Leadership

Beyond the Sticker Price: Understanding the True Cost of Your Security Tools

Beyond the Sticker Price: Understanding the True Cost of Your Security Tools As cyber security leaders, our fundamental mission is...

Avi Shua

Mar 12, 2026

Pickle in the Pipeline: Critical RCE Vulnerabilities in SGLang’s LLM Serving Framework

Discovered Vulnerabilities

Pickle in the Pipeline: Critical RCE Vulnerabilities in SGLang’s LLM Serving Framework

Table of contentsQuick OverviewCVSS RationaleWhat Is SGLang?Technical AnalysisRoot Cause: Python's pickle on Untrusted Network DataHow Pickle Deserialization Becomes Code ExecutionProposed...

Igor Stepansky

Mar 11, 2026

Blog

Credential‑Stealing Malware in LiteLLM Supply Chain Attack

Mission Accomplished: Orchestrate Your Remediation Strategy With Orca Missions

The Orca Approach to Runtime AI Security

CanisterWorm: When a CI/CD Breach Became a Self-Spreading npm Worm

From Findings to Fixes with Code Reachability, AppSec Triage Agent, and the AppSec Dashboard

Introducing the Agentic Cloud Security Platform

First Look: Orca’s RSAC 2026 Announcements

Beyond the Sticker Price: Understanding the True Cost of Your Security Tools

Pickle in the Pipeline: Critical RCE Vulnerabilities in SGLang’s LLM Serving Framework

Cloud Security Platform

Technology Ecosystem

By Solution

By Industry

Comparisons