The Leader in Cloud Security Research

A stylized graphic of a pull request from GitHub with a hole in it and data leaking out

pull_request_nightmare Part 2: Exploiting GitHub Actions for RCE and Supply Chain

Executive summary We have managed to successfully compromise repositories owned by Microsoft, Google, Nvidia and many more using a single pull request from a fork. Based on our data, we believe the problem likely extends to many thousands of repositories that remain at risk of exploitation. These research discoveries have prevented far-reaching risks associated with …

September 30, 2025
By Roi Nisimi

Latest

Discovered Vulnerabilities
pull_request_nightmare Part 1: Exploiting GitHub Actions for RCE and Supply Chain Attacks
- September 24, 2025
Research
Massive npm Malware Campaign Infects Popular Packages, @ctrl/tinycolor Affected
- September 16, 2025
Discovered Vulnerabilities
NPM Packages Compromised: Maintainer 'qix' Hacked
- September 08, 2025
Research
s1ngularity Supply Chain Attack: What It Means for Cloud and AI Security
- August 27, 2025

All Latest

Latest

Explore

Discovered Vulnerabilities

pull_request_nightmare Part 2: Exploiting GitHub Actions for RCE and Supply Chain

Executive summary We have managed to successfully compromise repositories owned by Microsoft, Google, Nvidia and many more using a single pull request from a fork. Based on our data, we believe the problem likely extends to many thousands of repositories that remain at risk of exploitation. These research discoveries have prevented far-reaching risks associated with …

September 30, 2025
By Roi Nisimi

A stylized graphic showing a pull request window with malicious code

pull_request_nightmare Part 1: Exploiting GitHub Actions for RCE and Supply Chain Attacks

September 24, 2025

A stylized graphic of floating packages in a dark cloud background

Massive npm Malware Campaign Infects Popular Packages, @ctrl/tinycolor Affected

September 16, 2025

NPM Packages Compromised: Maintainer 'qix' Hacked

September 08, 2025

A stylized graphic of a digitized cloud with an alert symbol on top of it

s1ngularity Supply Chain Attack: What It Means for Cloud and AI Security

August 27, 2025

All Discovered Vulnerabilities

Explore

In the News

All In the News

Featured

pull_request_nightmare Part 2: Exploiting GitHub Actions for RCE and Supply Chain

Latest

pull_request_nightmare Part 1: Exploiting GitHub Actions for RCE and Supply Chain Attacks

Massive npm Malware Campaign Infects Popular Packages, @ctrl/tinycolor Affected

NPM Packages Compromised: Maintainer 'qix' Hacked

s1ngularity Supply Chain Attack: What It Means for Cloud and AI Security

Latest

Discovered Vulnerabilities

pull_request_nightmare Part 2: Exploiting GitHub Actions for RCE and Supply Chain

pull_request_nightmare Part 1: Exploiting GitHub Actions for RCE and Supply Chain Attacks

Massive npm Malware Campaign Infects Popular Packages, @ctrl/tinycolor Affected

NPM Packages Compromised: Maintainer 'qix' Hacked

s1ngularity Supply Chain Attack: What It Means for Cloud and AI Security

‘Orca Watch’ Series

New ‘ToolShell’ Exploit Chain Targets SharePoint Servers via CVE-2025-53770 and CVE-2025-53771

Security Briefing: Apache Struts Vulnerability CVE-2024-53677

Mitigating CVE 2024-38063: Critical RCE Vulnerability On Windows Systems With IPv6

Addressing CrowdStrike on Cloud VMs in AWS with Automated Remediation

How to Remediate CrowdStrike Falcon Windows Outages with Orca

Technical Deep Dives

Watch the Typo: Our PoC Exploit for Typosquatting in GitHub Actions

Kubernetes Testing Environment: An Open Source Resilience Platform for EKS, GKE and AKS

Meet AI Goat: The First Open Source AI Security Learning Environment Based on the OWASP Top 10 ML Risks

The Five Most Common AI Model Risks and How to Prevent Them

Leveraging Nuclei Templates to Identify Risks and Threats in Critical Cloud Applications

Thought Leadership

10 Most Popular AI Models of 2025

Bringing Memory to AI: A Look at A2A and MCP-like Technologies Across Platforms

The 10 Hottest Cybersecurity Tools And Products Of 2025 (So Far)

From ’Shadow AI’ To Agentic Anarchy, AI-SPM Is Key To Visibility: Experts

Cloud security faces mounting threats, Orca warns

2025 State of Cloud Security Report: Hunting threats in the age of relentless risk

Featured

pull_request_nightmare Part 2: Exploiting GitHub Actions for RCE and Supply Chain

Latest

pull_request_nightmare Part 1: Exploiting GitHub Actions for RCE and Supply Chain Attacks

Massive npm Malware Campaign Infects Popular Packages, @ctrl/tinycolor Affected

NPM Packages Compromised: Maintainer 'qix' Hacked

s1ngularity Supply Chain Attack: What It Means for Cloud and AI Security

2025 State of Cloud Security Report: Hunting threats in the age of relentless risk

The 10 Hottest Cybersecurity Tools And Products Of 2025 (So Far)

From ’Shadow AI’ To Agentic Anarchy, AI-SPM Is Key To Visibility: Experts

Cloud security faces mounting threats, Orca warns

Discovered Vulnerabilities

pull_request_nightmare Part 2: Exploiting GitHub Actions for RCE and Supply Chain

pull_request_nightmare Part 1: Exploiting GitHub Actions for RCE and Supply Chain Attacks

Massive npm Malware Campaign Infects Popular Packages, @ctrl/tinycolor Affected

NPM Packages Compromised: Maintainer 'qix' Hacked

s1ngularity Supply Chain Attack: What It Means for Cloud and AI Security

‘Orca Watch’ Series

New ‘ToolShell’ Exploit Chain Targets SharePoint Servers via CVE-2025-53770 and CVE-2025-53771

Security Briefing: Apache Struts Vulnerability CVE-2024-53677

Mitigating CVE 2024-38063: Critical RCE Vulnerability On Windows Systems With IPv6

Addressing CrowdStrike on Cloud VMs in AWS with Automated Remediation

How to Remediate CrowdStrike Falcon Windows Outages with Orca

Technical Deep Dives

Watch the Typo: Our PoC Exploit for Typosquatting in GitHub Actions

Kubernetes Testing Environment: An Open Source Resilience Platform for EKS, GKE and AKS

Meet AI Goat: The First Open Source AI Security Learning Environment Based on the OWASP Top 10 ML Risks

The Five Most Common AI Model Risks and How to Prevent Them

Leveraging Nuclei Templates to Identify Risks and Threats in Critical Cloud Applications

Thought Leadership

10 Most Popular AI Models of 2025

Bringing Memory to AI: A Look at A2A and MCP-like Technologies Across Platforms