Research
Bringing Memory to AI: A Look at A2A and MCP-like Technologies Across Platforms
Over the last year, we've witnessed a pivotal shift in how large language models (LLMs) are used - not just...
Research Pod
Discovered Vulnerabilities
Kubernetes CRD Abstraction Risks in kro
Executive Summary: The Orca Research Pod has discovered CVE-2025-48710 in kro (Kube Resource Orchestrator) where an attacker could introduce a malicious CustomResourceDefinition...
Discovered Vulnerabilities
‘IngressNightmare’: Critical Vulnerabilities in Ingress NGINX Controller Allow Unauthenticated Remote Code Execution
On March 24th, 2025, Wiz’s research team published information on five vulnerabilities in the Ingress NGINX Controller for Kubernetes (ingress-nginx)...
Discovered Vulnerabilities
Oracle Cloud Breach Exploiting CVE-2021-35587: How to Protect Your Organization
Read about the Oracle Cloud Breach Exploiting CVE-2021-35587 and learn how to protect your organization.
Cloud Security Insights
2025 State of Cloud Security Report: Cloud Risks Surge Amid Expanding AI Adoption
Today, we’re excited to release the 2025 State of Cloud Security Report, which reveals deep insights uncovered by the Orca...
Research
CVE-2025-31324 Exploited in the Wild: What We’ve Found in the Aftermath
In late April 2025, SAP disclosed CVE-2025-31324, a critical vulnerability in SAP NetWeaver’s Visual Composer development server. The flaw—stemming from...
Cloud Security Insights
CVE is Not Dead, Yet: MITRE CVE Program Status in 2025
Yesterday, MITRE executives announced that the MITRE CVE database may go dark due to a funding gap starting from today,...
Research
OWASP Non-Human Identities Top 10:Forging a New Standard in Cloud Security
Table of contentsWhat is the OWASP Non-Human Identities Top 10 Project?A deep dive into the NHI Top 101. NHI1:2025 -...
‘Orca Watch’ Series
Security Briefing: Apache Struts Vulnerability CVE-2024-53677
A critical vulnerability, CVE-2024-53677, has been identified in the Apache Struts 2 framework, a popular platform for developing Java-based web...
Research
10 Most Popular AI Packages of 2024
As investment in AI innovation ramps up, organizations are encountering headwinds from the high costs associated with AI development—a reality...
Research
10 Most Popular AI Models of 2024
Gartner predicts that the AI software market will reach nearly $298 billion by 2027, sustaining a compound annual growth rate...
Research
Top 5 Challenges of AI Security
New estimates forecast that the global AI market will surpass $184 billion (USD) in 2024, a 35% year-over-year increase. By...
Research
Mitigating CUPS RCE Vulnerabilities Affecting GNU/Linux Systems
Multiple vulnerabilities (one severe) have been discovered in CUPS (Common Unix Printing System) and related components. These vulnerabilities (CVE-2024-47176, CVE-2024-47076,...
Personalized Demo
See Orca Security in Action
Gain visibility, achieve compliance, and prioritize risks with the Orca Cloud Security Platform.