Blog Archives | Page 94 of 121

Integrating Cloud Security into DevOps: 3 Essential Tips for Adopting DevSecOps

Cloud Security Insights

Integrating Cloud Security into DevOps: 3 Essential Tips for Adopting DevSecOps

This post was originally published to The New Stack here. TLDR: How can organizations reduce operational and security complexity using...

Brena Monteiro

Feb 02, 2023

Orca Platform

10 Ways to Manage API Security Risks

This post was originally published to The New Stack. TLDR: Demand for APIs has skyrocketed, and securing them can be...

Faith Kilonzi

Feb 01, 2023

Why CIEM Plays a Key Role in Your Cloud Security Strategy

Orca Platform

Why CIEM Plays a Key Role in Your Cloud Security Strategy

This post was originally published to The New Stack here. TLDR: CIEM is a comprehensive solution to manage access rights...

Faith Kilonzi

Jan 31, 2023

Cloud Native Security: OWASP Kubernetes Top 10

Research

Cloud Native Security: OWASP Kubernetes Top 10

As more organizations adopt containerized infrastructure, the need for effective security practices becomes increasingly important. Recently released by the OWASP...

Ido Nidbach

Jan 26, 2023

How to Find and Hire Cloud Security Professionals

CISO Corner

How to Find and Hire Cloud Security Professionals

TLDR: While there is a shortage of cybersecurity professionals, finding qualified candidates for open positions is possible if teams can...

Andy Ellis

Jan 26, 2023

Artificial Intelligence and Cloud Security: Remediating Cloud Risks using GPT3

Orca Platform

Artificial Intelligence and Cloud Security: Remediating Cloud Risks using GPT3

Recently, the continued rise of artificial intelligence has taken center stage in the media with the availability of new tools...

Lior Drihem Itamar Golan

Jan 20, 2023

Elastic IP Transfer: Identifying and Mitigating Risks from a New Attack-Vector on AWS

Research

Elastic IP Transfer: Identifying and Mitigating Risks from a New Attack-Vector on AWS

Elastic IPs (EIPs) are public and static IPv4 addresses provided by AWS. EIPs can be viewed as a pool of...

Roi Nisimi

Jan 18, 2023

How Orca Found Server-Side Request Forgery (SSRF) Vulnerabilities in Four Different Azure Services

Discovered Vulnerabilities

How Orca Found Server-Side Request Forgery (SSRF) Vulnerabilities in Four Different Azure Services

As part of the Orca Research Pod efforts, we regularly research various cloud provider services and capabilities to help our...

Lidor Ben Shitrit

Jan 17, 2023

Unauthenticated SSRF Vulnerability on Azure Digital Twins Explorer

Discovered Vulnerabilities

Unauthenticated SSRF Vulnerability on Azure Digital Twins Explorer

In this blog we describe how we uncovered an SSRF Vulnerability in the Azure DigitalTwins Explorer service, allowing any unauthenticated...

Lidor Ben Shitrit

Jan 17, 2023

Blog

Integrating Cloud Security into DevOps: 3 Essential Tips for Adopting DevSecOps

10 Ways to Manage API Security Risks

Why CIEM Plays a Key Role in Your Cloud Security Strategy

Cloud Native Security: OWASP Kubernetes Top 10

How to Find and Hire Cloud Security Professionals

Artificial Intelligence and Cloud Security: Remediating Cloud Risks using GPT3

Elastic IP Transfer: Identifying and Mitigating Risks from a New Attack-Vector on AWS

How Orca Found Server-Side Request Forgery (SSRF) Vulnerabilities in Four Different Azure Services

Unauthenticated SSRF Vulnerability on Azure Digital Twins Explorer

Cloud Security Platform

Technology Ecosystem

By Solution

By Industry

Comparisons