645 matches found
Accelerating our commitment to Europe with even more investments
Wiz increases investments in products and presence for European customers by enabling support for AWS European Sovereign Cloud ESC and new regional headquarters...
Making Sense of Kubernetes Initial Access Vectors Part 1 – Control Plane
Explore Kubernetes control plane access vectors, risks, and security strategies to prevent unauthorized access and protect your clusters from potential threats...
Unmasking Phishing: Strategies for identifying 0ktapus domains and beyond
Wiz Research looks at phishing tactics, along with how to trace and investigate these campaigns...
Data access governance: Who's got the keys to your data kingdom?
Learn how Wiz helps you govern who can access what data in your cloud and protect your critical data...
Introducing the next generation of AI-powered remediation: Choose your own remediation strategy
The new AI-powered remediation 2.0 combines the power of GenAI with the Wiz Research Team’s expertise in identifying cloud-native attack paths...
Tricks and Treats: Top 3 GenAI Security Best Practices for a Safer Halloween
Don’t get spooked: Navigate the risks of generative AI with proven strategies to protect your organization 👻...
Supply chain attack on lottie-player: everything you need to know
Supply chain attack in popular lottie-player library compromises websites with malicious Web3 wallet prompts – update or revert the library to avoid the compromised versions...
The essential steps for cloud vulnerability management
Prioritizing vulnerabilities in the cloud can be overwhelming - Learn how teams adopt a workflow structured for speed and accuracy...
Expanding Wiz Runtime Sensor Coverage - Now Blocking Threats and Protecting Serverless Containers at Runtime
Wiz extends its cloud-native runtime sensor to secure serverless containers, providing deep visibility, blocking, and hunting capabilities for AWS Fargate and Azure Container Apps...
Wiz Expands Runtime Protection to Serverless Containers
Wiz extends its cloud-native runtime sensor to secure serverless containers, providing deep visibility, blocking, and hunting capabilities for AWS Fargate and Azure Container Apps...
Protect your Okta identities with Wiz
Wiz extends support to Okta with identity modeling on the Wiz Security Graph, visibility, risk assessment, and real-time threat detection for your Okta environment...
AskAI – Text to Security Graph Query
AskAI – Text to Security Graph Query...
Ta Da! The Wiz Runtime Sensor is now available in Wiz for Gov (FedRAMP)
We are excited to announce the addition of the Wiz Sensor to Wiz for Gov’s ATO. The lightweight eBPF based sensor improves risk prioritization, deepens threat detection, and adds runtime protection for container hosts and VMs...
Critical vulnerabilities in Palo Alto Expedition: everything you need to know
Detect and mitigate critical vulnerabilities CVE-2024-9463, CVE-2024-9464, CVE-2024-9465, CVE-2024-9466, CVE-2024-9467 in Palo Alto Networks’ Expedition tool. Organizations should patch urgently...
AWS Account Vending
How an AWS account vending strategy differs from a landing zone...
Cloud Logging Tip & Tricks: Getting the most value out of your cloud logs
In the cloud, logs are often the only way to get real-time visibility into what's happening, making them critical to any cloud detection and response program...
How Wiz Meets CISA “Secure by Design” Objectives
An update on our commitments to customer security...
CVE-2024-47076, CVE-2024-47175, CVE-2024-47176, CVE-2024-47177: Everything you need to know
Detect and mitigate CVE-2024-47076, CVE-2024-47175, CVE-2024-47176, and CVE-2024-47177 vulnerabilities impacting CUPS and IPP packages...
Wiz Research Finds Critical NVIDIA AI Vulnerability Affecting Containers Using NVIDIA GPUs, Including Over 35% of Cloud Environments
Critical severity vulnerability CVE-2024-0132 affecting NVIDIA Container Toolkit and GPU Operator presents high risk to AI workloads and environments...
Introducing Hybrid File Integrity Monitoring
Enhance your security with Wiz’s new hybrid File Integrity Monitoring FIM solution, combining agentless and runtime capabilities for comprehensive file monitoring...
Secure your Data Cloud with Wiz CNAPP for Snowflake
Gain unified visibility into Snowflake security posture and threats with the same workflows as the rest of your cloud...
Tracking cloud-fluent threat actors - Part one: Atomic cloud IOCs
Strategies for tracking and defending against malicious activity and threats in the cloud using atomic indicators of compromise IOCs...
Cloud Logging Tips and Tricks
Getting the most value out of your cloud logs...
Wiz joins the Microsoft Intelligent Security Association
Wiz collaborates with Microsoft on the quest to make the cloud more secure for everyone...
Wiz Code: Experience True ASPM With Code-to-Cloud Context
Enhance your application security posture with Wiz Code's integration of 3rd-party SAST scanners and cloud context for faster risk prioritization and remediation...
Developers Deserve Better: Why Wiz Code Is Built for You.
Wiz Code helps developers integrate security into their workflow, with real-time guidance from code to cloud. Reduce last-minute fixes. Build with confidence...
Introducing Wiz Code: transform your AppSec with Wiz
Cloud-native security starts with your code...
Uncovering Hybrid Cloud Attacks Part 1 – Addressing the Speed of Cloud Attacks
In this first part of the series, we’ll explain why effective response is so challenging and provide an overview of the problem...
Uncovering Hybrid Cloud Attacks Part 3 – The Response
In the final section of this blog series on uncovering complex hybrid cloud attacks, we’ll share key elements of the response to the real-world sophisticated cloud attack outlined in Part 2...
Uncovering Hybrid Cloud Attacks Part 2 – The Attack
in this second part of the series, we’ll share the details of a real-world sophisticated, long-term attack in the cloud...
Avoiding security incidents due to request collapsing
This feature of caching services can result in unexpected behavior. Here's how to prevent sensitive data from being accidentally exposed...
Frost & Sullivan recognizes Wiz as Cloud Security Posture Management leader
Research report benchmarks vendor innovation and growth performance in CSPM...
AWS Console Session Traceability: How Attackers Obfuscate Identity Through the AWS Console
Attackers can take advantage of a quirk of the default AWS configuration without SourceIdentity configured to potentially make detecting and attributing their actions more difficult...
Defeating Kubernetes Privilege Escalation: A Cloud Detection & Response Case Study
This case study serves to highlight the importance of rapid, heuristic, accurate, and contextualized detection and response in the cloud...
Strategies for performing security migrations
Advice for tackling and completing these major projects, including metrics, alerts, and prevention strategies...
Wiz achieves FedRAMP Moderate authorization
Wiz is now the fastest company to be listed FedRAMP Moderate Authorized on the FedRAMP Marketplace, making it easier for government agencies to effectively protect their cloud environment with Wiz’s CNAPP...
Increasing transparency in cloud security: Wiz is now a CVE Numbering Authority (CNA)
Our next steps and hope for the industry...
Emerging phishing campaign targeting AWS accounts
Wiz Threat Research recently spotted a new phishing campaign targeting AWS accounts...
Introducing Wizlympics: The First Cloud Security Olympic Games
The Wizlympic games have officially opened — do you have what it takes to become the master of cloud services?...
Celebrating a Milestone: 100 WIN Integrations and Counting!
The Wiz INtegration WIN Platform has come a long way in the year since it launched...
Introducing pattern-based agentless malware detection using YARA rules
Wiz is expanding our existing detection capabilities to include pattern-based malware detection using YARA rules written by the Wiz Research team...
Physical Security 101
Protecting your assets: the fundamentals of physical security and enterprise resilience at Wiz...
Understanding the Gartner® Market Guide for Cloud-Native Application Protection Platforms
How the market is evolving and why now, more than ever, you need a CNAPP...
Mastering cloud security with custom roles: one more step towards democratization
Discover how Wiz extends its existing RBAC with the Custom Roles feature, enabling you to tailor user permissions, maintain security, and stay aligned with business needs...
SeleniumGreed: Threat actors exploit exposed Selenium Grid services for Cryptomining
Wiz researchers discover ongoing threat to popular testing framework...
Introducing the Prompt Airlines CTF: Test Your AI Security Skills
Wiz is excited to announce "Prompt Airlines," a new cloud security Capture The Flag CTF event focused on AI vulnerabilities...
Your control tower to secure code across GitHub, GitLab, and Azure Repos
Secure your code and the entire development pipeline with the Wiz Security Graph, comprehensive configuration checks, and advanced code scanning...
SAPwned: SAP AI vulnerabilities expose customers’ cloud environments and private AI artifacts
Wiz Research uncovers vulnerabilities in SAP AI Core, allowing malicious actors to take over the service and access customer data...
Enhance existing security workflows with high-fidelity cloud security data from Wiz in ServiceNow
Add Wiz’s cloud and container security context to your organization's ServiceNow CMDB, vulnerability response, and IT service management solutions...
Guardians of Compliance: Unleashing the Magic of Wiz4Wiz
Wiz enables our GRC team to maximize efficiency and impact. Here's how...