BLOG

Categories

All
Security

What I Learned Switching from Traditional AppSec to Prioritized Fixing

J Fridley
,
,
May 19, 2025
All
Product

Beyond Workload Detection: How Oligo Delivers Full-Stack Runtime Security

Noah Simon
,
,
May 6, 2025
All
Security

The Rise of Vulnerability Exploitation as an Initial Attack Vector

Justin McCann
,
Noah Simon
,
April 23, 2025
All
Security

CVE Funding Almost Expired: What You Need to Know

Avi Lumelsky
,
,
April 16, 2025
All
Security

Vibe Coding: Shipping Features or Shipping Vulnerabilities?

Britt Frenkel
,
,
March 28, 2025
All
Product

What is Application Detection and Response (ADR)? 2025 Guide

Gal Elbaz
,
,
March 26, 2025
All
Product

Uncovering the Hidden Risks: How Oligo Identifies 1100% More Vulnerable Functions

Noah Simon
,
Avi Lumelsky
,
March 19, 2025
All
Security

ByBit $1.5B Crypto Heist: ADR Best Practices and Lessons Learned

Justin McCann
,
Noah Simon
,
March 17, 2025
All
Engineering

Observability Revolutions in Oligo's Runtime Sensor

Nathan Quibech
,
,
March 11, 2025
All
Research
Shadow Vulnerability

Shadow Vulnerabilities in AI: The Hidden Perils Beyond CVEs

Avi Lumelsky
,
,
March 3, 2025
All
Security
Product

ADR vs. CDR: Why Application Detection and Response is the Key to Stopping Modern Attacks

Noah Simon
,
,
February 25, 2025
All
Research
Security

Critical Vulnerabilities in AirPlay Protocol Affecting Multiple Apple Devices

Uri Katz
,
Avi Lumelsky
,
Gal Elbaz
January 28, 2025
All
Research
Shadow Vulnerability

CVE-2024-50050: Critical Vulnerability in meta-llama/llama-stack

Avi Lumelsky
,
,
January 23, 2025
All
Product

ADR vs. RASP: It’s All About the TCO

Jeanette Sherman
,
,
November 20, 2024
All
Research

More Models, More ProbLLMs

Avi Lumelsky
,
,
October 30, 2024
All
Research

New Remote Code Execution (RCE) Vulnerabilities in CUPS for Linux: Threats and Mitigations

Avi Lumelsky
,
Uri Katz
,
September 28, 2024
All
Product

Oligo Platform News: Operationalization & Workflows Updates

Jeanette Sherman
,
,
September 26, 2024
All
Product

The No-Blind-Spot Software Supply Chain: How Oligo Sees It All

Jeanette Sherman
,
,
September 23, 2024
All
Research
Shadow Vulnerability

Shining a Light on Shadow Vulnerabilities

Avi Lumelsky
,
Gal Elbaz
,
September 19, 2024
All
General

Oligo Wins SC Award for Best Supply Chain Security Solution

Nadav Czerninski
,
,
September 17, 2024
All
General

Oligo Named Finalist by SC Awards for Best Supply Chain Solution of 2024

Nadav Czerninski
,
,
September 3, 2024
All
Research
Shadow Vulnerability

TensorFlow Keras Downgrade Attack: CVE-2024-3660 Bypass

Avi Lumelsky
,
,
August 20, 2024
All
Research
Shadow Vulnerability

0.0.0.0 Day: Exploiting Localhost APIs From the Browser

Avi Lumelsky
,
,
August 7, 2024
All
Security

Recent CrowdStrike Outage Emphasizes the Need for eBPF-Based Sensors

Guy Kaplan
,
,
July 19, 2024
All
Product

Now Showing in the Oligo Application Defense Platform: Direct and Transitive Dependencies

Jeanette Sherman
,
,
July 15, 2024
All
Research
Shadow Vulnerability

Shelltorch Explained: Multiple Vulnerabilities in Pytorch Model Server (Torchserve) (CVSS 9.9, CVSS 9.8) Walkthrough

Uri Katz
,
Guy Kaplan
,
Avi Lumelsky
July 8, 2024
All
Security

Critical RCE Vulnerabilities in OpenSSH (CVE-2024-6387, CVE-2024-6409) - How to Detect and Mitigate

Guy Kaplan
,
,
July 1, 2024
All
Security

App-Level eBPF Applications - User vs. Kernel Probes

Avi Lumelsky
,
,
July 1, 2024
All
Security

Practical AppSec, Part II: The Limitations of “Shift Left” (and Why Runtime Is the Right Time)

Jeanette Sherman
,
,
June 24, 2024
All
Product
Shadow Vulnerability

Oligo ADR in action: PaddlePaddle Shadow Vulnerability

Nitzan Mousseri
,
,
June 9, 2024
All
General

Oligo Security Named to Rising in Cyber 2024

Nadav Czerninski
,
,
June 4, 2024
All
Product
Shadow Vulnerability

Oligo ADR in Action: LLM Prompt Injection

Nitzan Mousseri
,
,
May 20, 2024
All
Security

Deep Dive on the XZ Backdoor: CVE 2024-3094 Enables Remote Code Execution in XZ (5.6.0-5.6.1)

Jeanette Sherman
,
,
May 1, 2024
All
Product

XZ-actly What You Need (CVE-2024-3094): Detecting Exploitation with Oligo

Guy Kaplan
,
Uri Katz
,
Nitzan Mousseri
April 2, 2024
All
Research
Shadow Vulnerability

ShadowRay: First Known Attack Campaign Targeting AI Workloads Actively Exploited In The Wild

Avi Lumelsky
,
Guy Kaplan
,
Gal Elbaz
March 26, 2024
All
Security

The Definitive Guide to Runtime Vulnerability Prioritization

Harel Hilu
,
,
March 7, 2024
All
Security

On Loaded vs. Executed Libraries During Runtime – What This Means for Reachability

Guy Kaplan
,
,
February 28, 2024
All
Security

Practical AppSec, Part I: Why Devs Don’t Trust AppSec Findings (And What You Can Do About It)

Jeanette Sherman
,
,
February 12, 2024
All
Product

Oligo’s Best Features of 2023 (And an Exciting Sneak Peek at 2024)

Avshalom Hilu
,
,
January 30, 2024
All
Security

AppSec in the Age of AI: Predicting Challenges and Opportunities

Nadav Czerninski
,
,
December 19, 2023
All
Research
Shadow Vulnerability

ShellTorch: Multiple Critical Vulnerabilities in PyTorch TorchServe Threatens Countless AI Users

Idan Levcovich
,
Guy Kaplan
,
Gal Elbaz
October 3, 2023
All
Security

Oligo and WebP 0-Day: Keep Calm and Check the Runtime Context

Gal Elbaz
,
,
September 28, 2023
All
Security

4 Tips for Adopting a Practical Approach to AppSec

Robert Kugler
,
,
September 18, 2023
All
Product

Scaling Runtime Security: How eBPF is Solving Decade-Long Challenges

Noam Issachar
,
,
May 7, 2023
All
General

Revolutionizing the Game of Application Security

Avshalom Hilu
,
,
February 15, 2023
All
General

Introducing Oligo: Leading Application Security to Runtime

Nadav Czerninski
,
Gal Elbaz
,
Avshalom Hilu
February 14, 2023