Category Archives: Orca Security

Microsoft Patch Tuesday, June 2022 Edition

Posted on by

Microsoft on Tuesday released software updates to fix 60 security vulnerabilities in its Windows operating systems and other software, including a zero-day flaw in all supported Microsoft Office versions on all flavors of Windows that’s seen active exploitation for at least two months now. On a lighter note, Microsoft is officially retiring its Internet Explorer (IE) web browser, which turns 27 years old this year. Continue reading Microsoft Patch Tuesday, June 2022 Edition

Microsoft fixes Follina and 55 other CVEs

Posted on by

June 2022 Patch Tuesday has been marked by Microsoft with the release of fixes for 55 new CVEs, as well as security updates that fix Follina (CVE-2022-30190), the Microsoft Windows Support Diagnostic Tool (MSDT) RCE that is being widely exploited by at… Continue reading Microsoft fixes Follina and 55 other CVEs

Infosec products of the month: May 2022

Posted on by

Here’s a look at the most interesting products from the past month, featuring releases from: AuditBoard, BIO-key, Cohesity, Corelight, Data Theorem, Deepfence, ForgeRock, Fortinet, Hunters, Enpass, iDenfy, Kasten by Veeam, Kingston Digital, Microsoft, … Continue reading Infosec products of the month: May 2022

Orca Security unveils Shift Left Security capabilities to prevent cloud application issues

Posted on by

Orca Security announced a cloud security solution to provide context-aware Shift Left Security for cloud infrastructure and applications. Orca Security helps DevOps teams understand the potential impact of security issues on cloud application productio… Continue reading Orca Security unveils Shift Left Security capabilities to prevent cloud application issues

Microsoft patches Windows LSA spoofing zero-day under active attack (CVE-2022-26925)

Posted on by

May 2022 Patch Tuesday is here, and Microsoft has marked it by releasing fixes for 74 CVE-numbered vulnerabilities, including one zero-day under active attack (CVE-2022-26925) and two publicly known vulnerabilities (CVE-2022-29972 and CVE-2022-22713). … Continue reading Microsoft patches Windows LSA spoofing zero-day under active attack (CVE-2022-26925)

Infosec products of the month: April 2022

Posted on by

Here’s a look at the most interesting products from the past month, featuring releases from: Akamai, Alert Logic, Arcanna.ai, Axis Security, BigID, BreachBits, ColorTokens, Finite State, Forescout, Fortinet, Hillstone Networks, IBM, Imperva, Keysight T… Continue reading Infosec products of the month: April 2022

New infosec products of the week: April 8, 2022

Posted on by

Here’s a look at the most interesting products from the past week, featuring releases from ColorTokens, Forescout, Fortinet, IBM, Imperva, Keysight Technologies, and Orca Security. IBM z16 protects data and systems against current and future threats IB… Continue reading New infosec products of the week: April 8, 2022

Orca Security adds attack path analysis capability to improve the effectiveness of security teams

Posted on by

Orca Security announced Attack Path Analysis and Business Impact Score for Cloud-Native Applications. The new capability automatically combines cloud risks and insights, including vulnerabilities, misconfigurations, and trust privileges, to surface the… Continue reading Orca Security adds attack path analysis capability to improve the effectiveness of security teams

The problem with multiple cloud security tools: Alert fatigue and burnout

Posted on by

Orca Security released a research report on public cloud security alert fatigue. The survey, held among over 800 IT professionals across five countries and ten industries found that 55% of respondents use three or more cloud providers and 57% have five… Continue reading The problem with multiple cloud security tools: Alert fatigue and burnout