Orca Security, a frontrunner in agentless cloud security, has introduced new features and services designed to enhance the speed and effectiveness of investigating and responding to cloud-native infrastructure attacks. By partnering with ModePUSH, Orca now offers cloud digital forensics and incident response services. This collaboration enables organizations to triage, investigate, and address security incidents using insights from the Orca Cloud Native Application Protection Platform.
In today’s complex cloud environments, organizations often use multiple cloud service providers and advanced features, making their cloud estates more intricate than ever before. This complexity increases the potential for vulnerabilities. The latest Orca Security report highlights significant security concerns: 81% of organizations have public-facing assets with open ports, and 82% have Kubernetes API servers that are exposed to the public.
Gil Geron, CEO and co-founder of Orca Security, emphasizes the need for comprehensive visibility into cloud risks. He notes that as organizations adopt more sophisticated cloud services, the complexity of their cloud environments grows, presenting more opportunities for attackers. Orca’s mission is to enhance cloud security by providing detailed visibility into risk factors. The recent platform upgrades and the new partnership with ModePUSH aim to help organizations swiftly identify and address breaches or compromises across their cloud infrastructure and application layers.
The Orca Cloud Native Application Protection Platform now features integrated Cloud Detection and Response (CDR) capabilities. This includes the ability to combine SideScanning snapshots with cloud provider audit logs and third-party agents to detect suspicious activities and advanced threats. One of the key updates is the platform’s forensic snapshots feature, which allows security and incident response teams to quickly generate forensic images of workloads. This capability eliminates the need for engaging with external processes or additional teams, streamlining the incident response process.
Responding to incidents that involve various systems and services can be challenging. With Orca’s platform, teams can efficiently gather forensic snapshots and manage incidents directly within the Orca Cloud Security Platform, avoiding the need for manual snapshotting of each asset’s storage areas. The partnership with ModePUSH, a renowned cybersecurity consulting firm, further supports organizations by providing in-depth analysis of data from Orca.
Ben Harel, Co-Founder of ModePUSH, highlights the importance of effective cloud security and visibility. He notes that this partnership allows ModePUSH to provide enhanced visibility, data, and cloud telemetry to security and incident response teams, improving their ability to investigate and respond to breaches efficiently.