Lucene search
K
WizblogRecent

645 matches found

Wiz blog
Wiz blog
added 2024/11/13 3:0 p.m.3 views

Accelerating our commitment to Europe with even more investments

Wiz increases investments in products and presence for European customers by enabling support for AWS European Sovereign Cloud ESC and new regional headquarters...

7.3AI score
Exploits0
Wiz blog
Wiz blog
added 2024/11/12 6:52 p.m.6 views

Making Sense of Kubernetes Initial Access Vectors Part 1 – Control Plane

Explore Kubernetes control plane access vectors, risks, and security strategies to prevent unauthorized access and protect your clusters from potential threats...

7.3AI score
Exploits0
Wiz blog
Wiz blog
added 2024/11/07 5:9 p.m.10 views

Unmasking Phishing: Strategies for identifying 0ktapus domains and beyond

Wiz Research looks at phishing tactics, along with how to trace and investigate these campaigns...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2024/11/06 2:50 p.m.4 views

Data access governance: Who's got the keys to your data kingdom?

Learn how Wiz helps you govern who can access what data in your cloud and protect your critical data...

7.3AI score
Exploits0
Wiz blog
Wiz blog
added 2024/11/04 6:30 p.m.8 views

Introducing the next generation of AI-powered remediation: Choose your own remediation strategy

The new AI-powered remediation 2.0 combines the power of GenAI with the Wiz Research Team’s expertise in identifying cloud-native attack paths...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2024/10/31 2:0 p.m.5 views

Tricks and Treats: Top 3 GenAI Security Best Practices for a Safer Halloween

Don’t get spooked: Navigate the risks of generative AI with proven strategies to protect your organization 👻...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2024/10/31 12:55 p.m.6 views

Supply chain attack on lottie-player: everything you need to know

Supply chain attack in popular lottie-player library compromises websites with malicious Web3 wallet prompts – update or revert the library to avoid the compromised versions...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2024/10/30 3:0 p.m.8 views

The essential steps for cloud vulnerability management

Prioritizing vulnerabilities in the cloud can be overwhelming - Learn how teams adopt a workflow structured for speed and accuracy...

7.4AI score
Exploits0
Wiz blog
Wiz blog
added 2024/10/28 2:0 p.m.13 views

Expanding Wiz Runtime Sensor Coverage - Now Blocking Threats and Protecting Serverless Containers at Runtime

Wiz extends its cloud-native runtime sensor to secure serverless containers, providing deep visibility, blocking, and hunting capabilities for AWS Fargate and Azure Container Apps...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2024/10/28 2:0 p.m.13 views

Wiz Expands Runtime Protection to Serverless Containers

Wiz extends its cloud-native runtime sensor to secure serverless containers, providing deep visibility, blocking, and hunting capabilities for AWS Fargate and Azure Container Apps...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2024/10/23 2:0 p.m.27 views

Protect your Okta identities with Wiz

Wiz extends support to Okta with identity modeling on the Wiz Security Graph, visibility, risk assessment, and real-time threat detection for your Okta environment...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2024/10/23 2:0 p.m.18 views

AskAI – Text to Security Graph Query

AskAI – Text to Security Graph Query...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2024/10/14 3:14 p.m.36 views

Ta Da! The Wiz Runtime Sensor is now available in Wiz for Gov (FedRAMP)

We are excited to announce the addition of the Wiz Sensor to Wiz for Gov’s ATO. The lightweight eBPF based sensor improves risk prioritization, deepens threat detection, and adds runtime protection for container hosts and VMs...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2024/10/10 5:45 p.m.37 views

Critical vulnerabilities in Palo Alto Expedition: everything you need to know

Detect and mitigate critical vulnerabilities CVE-2024-9463, CVE-2024-9464, CVE-2024-9465, CVE-2024-9466, CVE-2024-9467 in Palo Alto Networks’ Expedition tool. Organizations should patch urgently...

9.9CVSS7.1AI score0.99597EPSS
Exploits9
Wiz blog
Wiz blog
added 2024/10/10 2:0 p.m.6 views

AWS Account Vending

How an AWS account vending strategy differs from a landing zone...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2024/10/08 2:12 p.m.10 views

Cloud Logging Tip & Tricks: Getting the most value out of your cloud logs

In the cloud, logs are often the only way to get real-time visibility into what's happening, making them critical to any cloud detection and response program...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2024/10/08 2:0 p.m.7 views

How Wiz Meets CISA “Secure by Design” Objectives

An update on our commitments to customer security...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2024/09/29 5:0 p.m.34 views

CVE-2024-47076, CVE-2024-47175, CVE-2024-47176, CVE-2024-47177: Everything you need to know

Detect and mitigate CVE-2024-47076, CVE-2024-47175, CVE-2024-47176, and CVE-2024-47177 vulnerabilities impacting CUPS and IPP packages...

7.1AI score
Exploits0
Wiz blog
Wiz blog
added 2024/09/26 12:33 p.m.23 views

Wiz Research Finds Critical NVIDIA AI Vulnerability Affecting Containers Using NVIDIA GPUs, Including Over 35% of Cloud Environments

Critical severity vulnerability CVE-2024-0132 affecting NVIDIA Container Toolkit and GPU Operator presents high risk to AI workloads and environments...

9CVSS7.2AI score0.37055EPSS
Exploits2
Wiz blog
Wiz blog
added 2024/09/25 3:0 p.m.18 views

Introducing Hybrid File Integrity Monitoring

Enhance your security with Wiz’s new hybrid File Integrity Monitoring FIM solution, combining agentless and runtime capabilities for comprehensive file monitoring...

7.5AI score
Exploits0
Wiz blog
Wiz blog
added 2024/09/25 1:30 p.m.5 views

Secure your Data Cloud with Wiz CNAPP for Snowflake

Gain unified visibility into Snowflake security posture and threats with the same workflows as the rest of your cloud...

7.3AI score
Exploits0
Wiz blog
Wiz blog
added 2024/09/23 3:45 p.m.9 views

Tracking cloud-fluent threat actors - Part one: Atomic cloud IOCs

Strategies for tracking and defending against malicious activity and threats in the cloud using atomic indicators of compromise IOCs...

7.3AI score
Exploits0
Wiz blog
Wiz blog
added 2024/09/17 2:0 p.m.12 views

Cloud Logging Tips and Tricks

Getting the most value out of your cloud logs...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2024/09/16 1:29 p.m.12 views

Wiz joins the Microsoft Intelligent Security Association

Wiz collaborates with Microsoft on the quest to make the cloud more secure for everyone...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2024/09/12 4:11 p.m.7 views

Wiz Code: Experience True ASPM With Code-to-Cloud Context

Enhance your application security posture with Wiz Code's integration of 3rd-party SAST scanners and cloud context for faster risk prioritization and remediation...

7.4AI score
Exploits0
Wiz blog
Wiz blog
added 2024/09/11 1:27 p.m.8 views

Developers Deserve Better: Why Wiz Code Is Built for You.

Wiz Code helps developers integrate security into their workflow, with real-time guidance from code to cloud. Reduce last-minute fixes. Build with confidence...

7.6AI score
Exploits0
Wiz blog
Wiz blog
added 2024/09/10 12:50 p.m.11 views

Introducing Wiz Code: transform your AppSec with Wiz

Cloud-native security starts with your code...

7.3AI score
Exploits0
Wiz blog
Wiz blog
added 2024/09/04 4:0 p.m.5 views

Uncovering Hybrid Cloud Attacks Part 1 – Addressing the Speed of Cloud Attacks

In this first part of the series, we’ll explain why effective response is so challenging and provide an overview of the problem...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2024/09/04 4:0 p.m.5 views

Uncovering Hybrid Cloud Attacks Part 3 – The Response

In the final section of this blog series on uncovering complex hybrid cloud attacks, we’ll share key elements of the response to the real-world sophisticated cloud attack outlined in Part 2...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2024/09/04 4:0 p.m.3 views

Uncovering Hybrid Cloud Attacks Part 2 – The Attack

in this second part of the series, we’ll share the details of a real-world sophisticated, long-term attack in the cloud...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2024/09/03 1:47 p.m.9 views

Avoiding security incidents due to request collapsing

This feature of caching services can result in unexpected behavior. Here's how to prevent sensitive data from being accidentally exposed...

7AI score
Exploits0
Wiz blog
Wiz blog
added 2024/08/29 1:52 p.m.4 views

Frost & Sullivan recognizes Wiz as Cloud Security Posture Management leader

Research report benchmarks vendor innovation and growth performance in CSPM...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2024/08/22 4:0 p.m.8 views

AWS Console Session Traceability: How Attackers Obfuscate Identity Through the AWS Console

Attackers can take advantage of a quirk of the default AWS configuration without SourceIdentity configured to potentially make detecting and attributing their actions more difficult...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2024/08/21 4:0 p.m.7 views

Defeating Kubernetes Privilege Escalation: A Cloud Detection & Response Case Study

This case study serves to highlight the importance of rapid, heuristic, accurate, and contextualized detection and response in the cloud...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2024/08/16 3:1 p.m.5 views

Strategies for performing security migrations

Advice for tackling and completing these major projects, including metrics, alerts, and prevention strategies...

7.3AI score
Exploits0
Wiz blog
Wiz blog
added 2024/08/15 3:54 p.m.8 views

Wiz achieves FedRAMP Moderate authorization

Wiz is now the fastest company to be listed FedRAMP Moderate Authorized on the FedRAMP Marketplace, making it easier for government agencies to effectively protect their cloud environment with Wiz’s CNAPP...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2024/08/14 1:43 p.m.8 views

Increasing transparency in cloud security: Wiz is now a CVE Numbering Authority (CNA)

Our next steps and hope for the industry...

7.3AI score
Exploits0
Wiz blog
Wiz blog
added 2024/08/08 1:28 p.m.13 views

Emerging phishing campaign targeting AWS accounts

Wiz Threat Research recently spotted a new phishing campaign targeting AWS accounts...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2024/08/08 10:53 a.m.9 views

Introducing Wizlympics: The First Cloud Security Olympic Games

The Wizlympic games have officially opened — do you have what it takes to become the master of cloud services?...

7.1AI score
Exploits0
Wiz blog
Wiz blog
added 2024/08/05 1:46 p.m.10 views

Celebrating a Milestone: 100 WIN Integrations and Counting!

The Wiz INtegration WIN Platform has come a long way in the year since it launched...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2024/07/31 2:13 p.m.16 views

Introducing pattern-based agentless malware detection using YARA rules

Wiz is expanding our existing detection capabilities to include pattern-based malware detection using YARA rules written by the Wiz Research team...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2024/07/30 7:34 p.m.6 views

Physical Security 101

Protecting your assets: the fundamentals of physical security and enterprise resilience at Wiz...

7.1AI score
Exploits0
Wiz blog
Wiz blog
added 2024/07/30 1:49 p.m.6 views

Understanding the Gartner® Market Guide for Cloud-Native Application Protection Platforms

How the market is evolving and why now, more than ever, you need a CNAPP...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2024/07/25 6:26 p.m.11 views

Mastering cloud security with custom roles: one more step towards democratization

Discover how Wiz extends its existing RBAC with the Custom Roles feature, enabling you to tailor user permissions, maintain security, and stay aligned with business needs...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2024/07/25 2:5 p.m.9 views

SeleniumGreed: Threat actors exploit exposed Selenium Grid services for Cryptomining

Wiz researchers discover ongoing threat to popular testing framework...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2024/07/24 2:50 p.m.65 views

Introducing the Prompt Airlines CTF: Test Your AI Security Skills

Wiz is excited to announce "Prompt Airlines," a new cloud security Capture The Flag CTF event focused on AI vulnerabilities...

7.3AI score
Exploits0
Wiz blog
Wiz blog
added 2024/07/18 2:47 p.m.12 views

Your control tower to secure code across GitHub, GitLab, and Azure Repos

Secure your code and the entire development pipeline with the Wiz Security Graph, comprehensive configuration checks, and advanced code scanning...

7.4AI score
Exploits0
Wiz blog
Wiz blog
added 2024/07/17 5:45 p.m.36 views

SAPwned: SAP AI vulnerabilities expose customers’ cloud environments and private AI artifacts

Wiz Research uncovers vulnerabilities in SAP AI Core, allowing malicious actors to take over the service and access customer data...

7.3AI score
Exploits0
Wiz blog
Wiz blog
added 2024/07/10 1:13 p.m.8 views

Enhance existing security workflows with high-fidelity cloud security data from Wiz in ServiceNow

Add Wiz’s cloud and container security context to your organization's ServiceNow CMDB, vulnerability response, and IT service management solutions...

7.3AI score
Exploits0
Wiz blog
Wiz blog
added 2024/07/09 5:27 p.m.4 views

Guardians of Compliance: Unleashing the Magic of Wiz4Wiz

Wiz enables our GRC team to maximize efficiency and impact. Here's how...

7.2AI score
Exploits0
Total number of security vulnerabilities645