Research

Over the last year, we've witnessed a pivotal shift in how large language models (LLMs) are used - not just...

Executive Summary: The Orca Research Pod has discovered CVE-2025-48710 in kro (Kube Resource Orchestrator) where an attacker could introduce a malicious CustomResourceDefinition...

Yesterday, MITRE executives announced that the MITRE CVE database may go dark due to a funding gap starting from today,...

Generative AI is fundamentally changing how we work, expanding human creativity and optimizing productivity across the search-summarize-synthesize workflow we use...

On March 24th, 2025, Wiz’s research team published information on five vulnerabilities in the Ingress NGINX Controller for Kubernetes (ingress-nginx)...

Read about the Oracle Cloud Breach Exploiting CVE-2021-35587 and learn how to protect your organization.

Over the past weekend, security researchers discovered that the popular GitHub Action tj-actions/changed-files has been compromised. Malicious code added to...

Table of contentsWhat is the OWASP Non-Human Identities Top 10 Project?A deep dive into the NHI Top 101. NHI1:2025 -...

A critical vulnerability, CVE-2024-53677, has been identified in the Apache Struts 2 framework, a popular platform for developing Java-based web...