Two XSS Vulnerabilities in Azure with Embedded postMessage IFrames
Microsoft Azure offers a diverse range of services that empower organizations with convenient and scalable cloud infrastructure solutions. However, even...
Microsoft Azure offers a diverse range of services that empower organizations with convenient and scalable cloud infrastructure solutions. However, even...
In recent years, supply chain attacks targeting software developers and suppliers have become increasingly common. The primary objective of these...
Today, at BlueHat IL 2023, we proudly announced our discovery of a new vulnerability in Azure, which we've dubbed 'Super...
As we approach the middle of 2023, we thought it an appropriate time to reflect on the cloud security risks...
The Orca Research Pod has uncovered a dangerous loophole in Google Kubernetes Engine (GKE) that could allow an attacker with...
It’s hard to believe that 2023 is nearing its end. As we look ahead to 2024, the Orca Research Pod...
The Orca Research Pod has made an important discovery that puts Google Cloud Dataproc clusters at risk for data theft,...
The highly anticipated Common Vulnerability Scoring System (CVSS) version 4 is planned to be released on October 31st by the...
Fun Facts About Lidor Beverage of choice: Coffee or soda Go-to snack: Any kind of chocolate Hobbies (Present and Past):...
The Orca Research Pod recently discovered a total of 8 important Cross-Site Scripting (XSS) vulnerabilities within various Apache services on...
In Azure environments, guest users are the go-to option when giving access to a user from a different tenant. Often,...
Bad.Build is a critical design flaw discovered by the Orca Research Pod in the Google Cloud Build service that enables...
Although it’s always preferable to prevent security incidents before they occur, it’s only a matter of time before an attacker...