647 matches found
TraderTraitor: Deep Dive
Inside the Lazarus subgroup that’s hijacking cloud platforms, poisoning supply chains, and stealing billions in digital assets...
What the U.S. AI Action Plan Means For Cyber Defenders
In the race to lead in AI, the U.S. is prioritizing rapid innovation and national security...
Operationalizing Cloud Security: How PwC and Wiz Help Turn Risk into Resilience
PwC leverages Wiz to empower secure cloud transformation—bridging strategy, visibility, and execution...
Soco404: Multiplatform Cryptomining Campaign Uses Fake Error Pages to Hide Payload
Wiz Research has identified a new iteration of a broader malicious cryptomining campaign, which we’ve dubbed Soco404...
SharePoint Vulnerabilities (CVE-2025-53770 & CVE-2025-53771): Everything You Need to Know
Detect and mitigate CVE-2025-53770 and CVE-2025-53771 - critical vulnerabilities in Microsoft SharePoint Server currently under active exploitation...
NVIDIAScape - Critical NVIDIA AI Vulnerability: A Three-Line Container Escape in NVIDIA Container Toolkit (CVE-2025-23266)
New critical vulnerability with 9.0 CVSS presents systemic risk to the AI ecosystem, carries widespread implications for AI infrastructure...
Wiz MCP Server Now Available in the new AWS Marketplace AI Agents and Tools category
Improve security posture and remediate risks faster using natural language workflows...
Wiz Recognized as a 2025 Customers’ Choice in Gartner® Peer Insights™ report
What our customers say: Wiz named as a Gartner Customers’ Choice for CSPM...
Why AppSec and CloudSec Belong Together in the Age of AI
AI accelerates development— and risk shouldn't be a blocker to innovation. Bridging AppSec and CloudSec with shared context and workflows is key to keeping up...
Critical vulnerabilities in NetScaler ADC exploited in-the-wild: everything you need to know
Detect and mitigate CVE-2025-5349, CVE-2025-5777, and CVE-2025-6543, Citrix Netscaler ADC and Gateway vulnerabilities being exploited in the wild. Organizations should patch urgently...
Exposed JDWP Exploited in the Wild: What Happens When Debug Ports Are Left Open
Understanding the risks and impact of deploying dev-mode in production environments...
The Ultimate Cloud Security Championship | 12 Months × 12 Challenges
We’re excited to announce our latest cloud security challenge series...
Wiz Recognized as a Leader in the 2025 IDC MarketScape for CNAPP
We believe recognition in the IDC MarketScape for CNAPP reflects our commitment to innovation and customer success across cloud security...
Operationalize Cloud Security in Zendesk: Wiz Now Available on the Zendesk Marketplace
Streamline remediation by delivering prioritized security issues straight to Zendesk...
Cloud Attacks Retrospective: Evolving Tactics, Familiar Entry Points
Let's break down eight attack patterns security teams should be watching in 2025...
Leaking Secrets in the Age of AI
How has AI-assisted development impacted secrets leakage? Learn the new patterns and emerging trends...
Wiz and AWS Security Hub Enhance Cloud Risk Prioritization
Wiz joins as a launch partner for AWS Security Hub to help customers act faster on prioritized security findings...
Wiz Integrates with NVIDIA Enterprise AI Factory Validated Design
Wiz is now included in the NVIDIA Enterprise AI Factory validated design, integrating with NVIDIA AI to help developers securely build and deploy enterprise AI agents at scale...
Building a Security Operations Center for the Cloud: Key Considerations for People, Processes, and Technology
As cloud adoption accelerates, security operations teams must rethink their people, processes, and technology to enable effective Cloud Detection and Response CDR and secure their evolving cloud attack surface...
AI Is Everywhere—But Security Teams Are Still Catching Up
Insights from 96 organizations on the state of AI security in the cloud...
Lean and Mean: How We Fine-Tuned a Small Language Model for Secret Detection in Code
Building an efficient small language model for cybersecurity, from data prep to deployment...
Cut the Noise, Find the Threats: Wiz Defend Launches for Government
Wiz Defend is now part of Wiz for Gov, giving public sector teams cloud runtime threat detection with full context to accelerate detection, investigation, and remediation of threats with precision...
Rules Files for Safer Vibe Coding
Helping LLMs generate safer and more secure code through open-sourced rules files...
Zero Critical Issues, Infinite Security Potential
Over 50% of Wiz customers have reduced their cloud risk by reaching Zero Critical Issues...
DevOps Tools Targeted for Cryptojacking
The Wiz Threat Research team has identified a widespread cryptojacking campaign targeting commonly used DevOps applications including Nomad and Consul...
Introducing Wiz Service Catalog: Democratize Cloud Security with Application Service Visibility
Empower platform teams and developers to reduce noise, scale ownership, and accelerate remediation across cloud-native apps...
The ROI of DSPM: Why Data Security Posture Management Is a Business Imperative
See how Data Security Posture Management DSPM delivers measurable impact across risk reduction, compliance, and operational efficiency...
Data Foundations: From Insight to Action
Now that you know what data you have and how it’s classified, here’s how Wiz helps you respond—with structured frameworks, flexible remediation paths, and built-in compliance tools...
Deloitte’s Secure by Design (SbD) Approach – Enhanced with Wiz
How Deloitte and Wiz Enable End-to-End Security Without Slowing Down Development...
Wiz Data Foundations: Data Classification
A closer look at Wiz’s data classification engine — including our new Novel Classifiers...
Ivanti EPMM RCE Vulnerability Chain Exploited in the Wild
Wiz Threat Research has observed exploitation in-the-wild of CVE-2025-4427 and CVE-2025-4428, the latest vulnerabilities affecting Ivanti Endpoint Manager Mobile EPMM...
Introducing WizOS: Securing Wiz from the ground up with hardened, near-zero-CVE container base images.
WizOS is now available in private preview for Wiz customers. It’s a key part of how we help teams start secure and stay secure with hardened, minimal container images...
What Analyzing Hundreds of Thousands of Cloud Environments Taught Us About Data Exposure
Wiz Research reveals the latest cloud data security trends across hundreds of thousands of real-world environments...
Deployed on AWS: Wiz and AWS Marketplace
Wiz is excited to announce our “Deployed on AWS” status with AWS Marketplace demonstrating our deep partnership with AWS and supporting our customer’s buying decisions...
Introducing The Cloud Hunting Games CTF: Test Your Cloud Incident Response Skills
Wiz is excited to announce “The Cloud Hunting Games”, a new hands-on Capture the Flag CTF challenge designed to test your cloud incident response skills...
Federal Data, Meet your New Bodyguard: DSPM joins Wiz for Government
Wiz is excited to bring Data Security Posture Management DSPM into our FedRAMP authorized offering. DSPM enables organizations requiring FedRAMP to automate classification, policy enforcement, and continuous monitoring for their sensitive cloud data...
Conquer HIPAA Controls With Wiz
Demystifying HIPAA: How Wiz Can Be Your Compliance Ally...
Wiz Data Foundations: Where’s My Sensitive Data—And Who Can Access It?
A hands-on walkthrough of how to use Wiz to find sensitive data and uncover who can access it...
Introducing the MCP Server for Wiz: Smarter AI Context, Stronger Cloud Security
Unified model context, real-time security answers, and a faster path to remediation...
Research Briefing: MCP Security
The present and future of security for the Model Context Protocol...
CIEM and Secure Cloud Access: Best Practices from Wiz and CyberArk
Learn how to secure your cloud identities and operationalize Zero Standing Privileges with the Wiz and CyberArk integration...
Insights from the field: Key Findings from the ICIT report on Government Cloud Security
Wiz partnered with the Institute for Critical Infrastructure Technology ICIT publishing a report around findings from a survey given to federal and state agencies, highlighting the growing importance of cloud and AI technologies, and concerns around available resources and data protections...
Top security talks from KubeCon Europe 2025
Many of the talks at KubeCon Europe, Europe’s largest open source community conference, were related to security. Let's discuss some of our favorites...
Crying out Cloud: Our Favorite Stories of 2024
Check out our top podcast episode picks from the past year...
Introducing Wiz Defend: Redefining a new standard for cloud detection and response
Accelerate your cloud SecOps transformation...
CPU_HU: Fileless cryptominer targeting exposed PostgreSQL with over 1.5K victims
Cloud environments at risk: Attackers target weak PostgreSQL instances with fileless cryptominer payloads...
IngressNightmare: CVE-2025-1974 - 9.8 Critical Unauthenticated Remote Code Execution Vulnerabilities in Ingress NGINX
Over 40% of cloud environments are vulnerable to RCE, likely leading to a complete cluster takeover...
How to use the new CloudTrail network activity events for AWS VPC Endpoints
Learn how AWS VPC Endpoint CloudTrail logs can help you troubleshoot endpoint policies and strengthen your network's security against data exfiltration...
Wiz to Join Google Cloud: Making Magic Together
Securing the future of cloud and AI...
Securing Cloud Databases: Best Practices with ClickHouse and Wiz
How to protect sensitive data in cloud-hosted databases with built-in security controls, best practices, and continuous risk monitoring...