Research Archives | Orca Security

pull_request_nightmare Part 2: Exploiting GitHub Actions for RCE and Supply Chain

Discovered Vulnerabilities

pull_request_nightmare Part 2: Exploiting GitHub Actions for RCE and Supply Chain

Executive summary We have managed to successfully compromise repositories owned by Microsoft, Google, Nvidia and many more using a single...

Roi Nisimi

Sep 30, 2025

pull_request_nightmare Part 1: Exploiting GitHub Actions for RCE and Supply Chain Attacks

Discovered Vulnerabilities

pull_request_nightmare Part 1: Exploiting GitHub Actions for RCE and Supply Chain Attacks

Executive Summary: The Orca Research Pod has uncovered critical security risks across several high-profile open source repositories that relied on...

Roi Nisimi

Sep 24, 2025

Massive npm Malware Campaign Infects Popular Packages, @ctrl/tinycolor Affected

Discovered Vulnerabilities

Massive npm Malware Campaign Infects Popular Packages, @ctrl/tinycolor Affected

TL;DR A new software supply chain attack has been identified, targeting the npm registry and this time impacting more than...

Shir Sadon

Sep 16, 2025

NPM Packages Compromised: Maintainer ‘qix’ Hacked

Discovered Vulnerabilities

NPM Packages Compromised: Maintainer ‘qix’ Hacked

Reports have emerged of a major supply chain attack impacting numerous NPM packages maintained by the developer known as “qix.”...

Bar Kaduri

Sep 08, 2025

s1ngularity Supply Chain Attack: What It Means for Cloud and AI Security

Discovered Vulnerabilities

s1ngularity Supply Chain Attack: What It Means for Cloud and AI Security

On August 26, 2025, the open-source ecosystem was shaken by a new supply chain attack that targeted Nx, a popular...

Roi Nisimi

Aug 27, 2025

Research

10 Most Popular AI Models of 2025

According to Gartner, worldwide spending on generative AI is set to reach $644 billion (USD) in 2025, a nearly 77%...

Bar Kaduri Shir Sadon Todd Stansfield

Aug 18, 2025

Report

2025 Gartner® Market Guide for CNAPP

2025 Gartner® Market Guide for Cloud-Native Application Protection Platforms (CNAPP) Read the report to learn why Gartner is recommending that...

Aug 12, 2025

New ‘ToolShell’ Exploit Chain Targets SharePoint Servers via CVE-2025-53770 and CVE-2025-53771

‘Orca Watch’ Series

New ‘ToolShell’ Exploit Chain Targets SharePoint Servers via CVE-2025-53770 and CVE-2025-53771

Microsoft pushed out-of-band fixes for on-premise SharePoint Servers after attackers chained CVE-2025-53770 and CVE-2025-53771. The chain bypasses SharePoint chain vulnerabilities,...

Roi Nisimi

Jul 22, 2025

Azure Machine Learning Escalation: When Pipelines Go Off the Rails

Microsoft Azure

Azure Machine Learning Escalation: When Pipelines Go Off the Rails

Table of contentsExecutive summaryA quick introduction to Azure Machine LearningHow AML pipelines are commonly usedHow the privilege escalation vulnerability could...

Ofir Yakobi

Jul 02, 2025

Research

pull_request_nightmare Part 2: Exploiting GitHub Actions for RCE and Supply Chain

pull_request_nightmare Part 1: Exploiting GitHub Actions for RCE and Supply Chain Attacks

Massive npm Malware Campaign Infects Popular Packages, @ctrl/tinycolor Affected

NPM Packages Compromised: Maintainer ‘qix’ Hacked

s1ngularity Supply Chain Attack: What It Means for Cloud and AI Security

10 Most Popular AI Models of 2025

2025 Gartner® Market Guide for CNAPP

New ‘ToolShell’ Exploit Chain Targets SharePoint Servers via CVE-2025-53770 and CVE-2025-53771

Azure Machine Learning Escalation: When Pipelines Go Off the Rails

Cloud Security Platform

Technology Ecosystem

By Solution

By Industry

Comparisons