Research Pod Archives | Orca Security

CVE-2025-59287 Explained: Critical WSUS RCE Vulnerability Actively Exploited

Discovered Vulnerabilities

CVE-2025-59287 Explained: Critical WSUS RCE Vulnerability Actively Exploited

On October 23rd, Microsoft released an unusual out-of-band security patch for CVE-2025-59287, a remote code execution vulnerability in WSUS (Windows...

Shir Sadon

Oct 26, 2025

Supply Chain Attacks: What Are They and Why Should You Care?

Thought Leadership

Supply Chain Attacks: What Are They and Why Should You Care?

Few threats capture the complexity of today’s digital ecosystem quite like supply chain attacks. These incidents don’t just exploit technical...

Bar Kaduri

Oct 22, 2025

pull_request_nightmare Part 2: Exploiting GitHub Actions for RCE and Supply Chain

Discovered Vulnerabilities

pull_request_nightmare Part 2: Exploiting GitHub Actions for RCE and Supply Chain

Executive summary We have managed to successfully compromise repositories owned by Microsoft, Google, Nvidia and many more using a single...

Roi Nisimi

Sep 30, 2025

pull_request_nightmare Part 1: Exploiting GitHub Actions for RCE and Supply Chain Attacks

Discovered Vulnerabilities

pull_request_nightmare Part 1: Exploiting GitHub Actions for RCE and Supply Chain Attacks

Executive Summary: The Orca Research Pod has uncovered critical security risks across several high-profile open source repositories that relied on...

Roi Nisimi

Sep 24, 2025

Massive npm Malware Campaign Infects Popular Packages, @ctrl/tinycolor Affected

Discovered Vulnerabilities

Massive npm Malware Campaign Infects Popular Packages, @ctrl/tinycolor Affected

TL;DR A new software supply chain attack has been identified, targeting the npm registry and this time impacting more than...

Shir Sadon

Sep 16, 2025

NPM Packages Compromised: Maintainer ‘qix’ Hacked

Discovered Vulnerabilities

NPM Packages Compromised: Maintainer ‘qix’ Hacked

Reports have emerged of a major supply chain attack impacting numerous NPM packages maintained by the developer known as “qix.”...

Bar Kaduri

Sep 08, 2025

s1ngularity Supply Chain Attack: What It Means for Cloud and AI Security

Discovered Vulnerabilities

s1ngularity Supply Chain Attack: What It Means for Cloud and AI Security

On August 26, 2025, the open-source ecosystem was shaken by a new supply chain attack that targeted Nx, a popular...

Roi Nisimi

Aug 27, 2025

Research

10 Most Popular AI Models of 2025

According to Gartner, worldwide spending on generative AI is set to reach $644 billion (USD) in 2025, a nearly 77%...

Bar Kaduri Shir Sadon Todd Stansfield

Aug 18, 2025

New ‘ToolShell’ Exploit Chain Targets SharePoint Servers via CVE-2025-53770 and CVE-2025-53771

‘Orca Watch’ Series

New ‘ToolShell’ Exploit Chain Targets SharePoint Servers via CVE-2025-53770 and CVE-2025-53771

Microsoft pushed out-of-band fixes for on-premise SharePoint Servers after attackers chained CVE-2025-53770 and CVE-2025-53771. The chain bypasses SharePoint chain vulnerabilities,...

Roi Nisimi

Jul 22, 2025

Research Pod

CVE-2025-59287 Explained: Critical WSUS RCE Vulnerability Actively Exploited

Supply Chain Attacks: What Are They and Why Should You Care?

pull_request_nightmare Part 2: Exploiting GitHub Actions for RCE and Supply Chain

pull_request_nightmare Part 1: Exploiting GitHub Actions for RCE and Supply Chain Attacks

Massive npm Malware Campaign Infects Popular Packages, @ctrl/tinycolor Affected

NPM Packages Compromised: Maintainer ‘qix’ Hacked

s1ngularity Supply Chain Attack: What It Means for Cloud and AI Security

10 Most Popular AI Models of 2025

New ‘ToolShell’ Exploit Chain Targets SharePoint Servers via CVE-2025-53770 and CVE-2025-53771

See Orca Security in Action

Cloud Security Platform

Technology Ecosystem

By Solution

By Industry

Comparisons