Research Pod

Bringing Memory to AI: A Look at A2A and MCP-like Technologies Across Platforms

Research

Bringing Memory to AI: A Look at A2A and MCP-like Technologies Across Platforms

Over the last year, we've witnessed a pivotal shift in how large language models (LLMs) are used - not just...

Ofir Yakobi Shir Sadon

May 19, 2025

Discovered Vulnerabilities

Kubernetes CRD Abstraction Risks in kro

Executive Summary: The Orca Research Pod has discovered CVE-2025-48710 in kro (Kube Resource Orchestrator) where an attacker could introduce a malicious CustomResourceDefinition...

Roi Nisimi

May 13, 2025

‘IngressNightmare’: Critical Vulnerabilities in Ingress NGINX Controller Allow Unauthenticated Remote Code Execution

Discovered Vulnerabilities

‘IngressNightmare’: Critical Vulnerabilities in Ingress NGINX Controller Allow Unauthenticated Remote Code Execution

On March 24th, 2025, Wiz’s research team published information on five vulnerabilities in the Ingress NGINX Controller for Kubernetes (ingress-nginx)...

Neil Carpenter Shir Sadon

Mar 25, 2025

Oracle Cloud Breach Exploiting CVE-2021-35587: How to Protect Your Organization

Discovered Vulnerabilities

Oracle Cloud Breach Exploiting CVE-2021-35587: How to Protect Your Organization

Read about the Oracle Cloud Breach Exploiting CVE-2021-35587 and learn how to protect your organization.

Yonatan Broder

Mar 22, 2025

CVE-2022-0847: Linux Dirty Pipe Local Privilege Escalation Vulnerability

‘Orca Watch’ Series

CVE-2022-0847: Linux Dirty Pipe Local Privilege Escalation Vulnerability

A new critical Linux privilege escalation vulnerability was published under the ID CVE-2022-0847, named “Dirty Pipe.”

Roy Aviram Bar Kaduri

Mar 10, 2022

AutoWarp: Critical Cross-Account Vulnerability in Microsoft Azure Automation Service

Discovered Vulnerabilities

AutoWarp: Critical Cross-Account Vulnerability in Microsoft Azure Automation Service

AutoWarp is a critical vulnerability in Microsoft Azure Automation Service that allows unauthorized access to other customer accounts using the...

Yanir Tsarimi

Mar 07, 2022

Lateral Movement in Google Cloud: Abusing the Infamous Default Service Account Misconfiguration

Research

Lateral Movement in Google Cloud: Abusing the Infamous Default Service Account Misconfiguration

How a malicious actor can conduct lateral movement in Google Cloud across compute engine instances using the default service account.

Liat Vaknin

Mar 04, 2022

Oracle Server Side Request Forgery (SSRF) Metadata

Discovered Vulnerabilities

Oracle Server Side Request Forgery (SSRF) Metadata

Analyzing customer environments is always a detective task, and when we find structural flaws in a service provider, this is...

Lidor Ben Shitrit

Feb 08, 2022

A Tale About Vulnerability Research and Early Detection

Discovered Vulnerabilities

A Tale About Vulnerability Research and Early Detection

Orca Security, as part of an ongoing research effort, discovered a vulnerability in the Databricks platform, and Databricks took swift...

Yanir Tsarimi

Feb 04, 2022

Linux Privilege Escalation Vulnerability in Polkit’s pkexec

‘Orca Watch’ Series

Linux Privilege Escalation Vulnerability in Polkit’s pkexec

A new critical Linux local privilege escalation vulnerability, found on Polkit's pkexec utility, was published and assigned CVE-2021-4034.

Bar Kaduri

Jan 27, 2022

HTTP Protocol Stack Remote Code Execution Vulnerability

‘Orca Watch’ Series

HTTP Protocol Stack Remote Code Execution Vulnerability

On Jan. 11, 2022, an HTTP Protocol stack remote code execution security vulnerability was identified. Microsoft assigned the CVE 2022-21907...

Liat Vaknin

Jan 17, 2022

BreakingFormation: Orca Security Research Team Discovers AWS CloudFormation Vulnerability

Discovered Vulnerabilities

BreakingFormation: Orca Security Research Team Discovers AWS CloudFormation Vulnerability

Orca Security’s vulnerability researcher, Tzah Pahima, discovered a vulnerability in AWS allowing file and credential disclosure of an AWS internal...