645 matches found
Wiz Ranked #1 CNAPP and CSPM by G2
Wiz was named the leader in two Summer 2024 Grid Reports, based on independent customer reviews...
How Wiz customers are flippin' vulnerabilities this July 4th weekend
Did you know that 40% of all Wiz customers are now in the Zero Critical Club? Here’s how three companies joined their ranks by eliminating critical issues in their cloud environments...
RCE vulnerability in OpenSSH: everything you need to know
Detect and mitigate CVE-2024-6387, a remote code execution vulnerability in OpenSSH. Organizations are advised to patch urgently...
It’s Magic! Wiz named Microsoft Commercial Marketplace Partner of the Year
Microsoft has honored Wiz as Commercial Marketplace 2024 Partner of the Year for excellence in go-to-market and joint-selling opportunities...
Probllama: Ollama Remote Code Execution Vulnerability (CVE-2024-37032) – Overview and Mitigations
Wiz Research discovered CVE-2024-37032, an easy-to-exploit Remote Code Execution vulnerability in the open-source AI Infrastructure project Ollama...
GenAI risks to be aware of — and prepare for — according to Gartner®
The deployment of GenAI, LLMs, and chat interfaces expands potential attack surfaces and poses increased security threats...
Wiz for Gov is in process for DoD IL4 Authorization
We are excited to be ‘in-process’ for DoD IL4, continuing our commitment to helping public sector secure everything they build and run in the cloud...
Wiz at Re:Inforce 2024
See what’s new with Wiz at Re:Inforce 2024 with this year’s recap...
Custom runtime rules and runtime response policies: new layers of defense
Wiz's custom runtime rules and runtime response policies add new layers to your defense-in-depth strategy...
Wiz remediation and response: enforcing security best practices and responding to incidents made easy
Powerful new remediation and response capabilities enable the real-time enforcement of organizational security policies and streamline incident management...
Critical RCE vulnerability in PHP CGI: everything you need to know
Detect and mitigate CVE-2024-4577, a critical remote code execution vulnerability in PHP CGI. Organizations are advised to patch urgently...
Pause off my cluster: DERO cryptojacking takes a new shape
Learn how the threat actors behind the 2023 DERO cryptojacking campaign have adapted their techniques to evade detection, and the best practices for mitigation...
Sail Further with Wiz Cost Optimization for Amazon EKS
Learn how Wiz's latest feature identifies outdated EKS clusters, helping organizations save millions on cloud spend. Find out how to optimize costs and reinvest savings in strategic initiatives...
Wiz achieves StateRAMP authorization
Great news for State and Local Governments! Wiz for Gov is now StateRAMP authorized...
Wiz AI-SPM model scanning: Securely innovate with AI community models
Detect malicious hosted AI models with Wiz AI-SPM and gain confidence in the models your data scientists use...
Wiz launches new data center in UAE, supercharging global operations in the region
Organizations in the region can now benefit from Wiz's cloud security platform...
Empowering SecOps in the cloud: enhancing threat detection with Wiz and Google Security Operations
Wiz announces integration with Google Security Operations to help SecOps teams identify critical cloud security issues...
The risk in malicious AI models: Wiz Research discovers critical vulnerability in AI-as-a-Service provider, Replicate
The Wiz Research team's investigations into AI-as-a-service providers reveals a major risk to AI systems...
Shifting from CWPP to CNAPP: new standards for cloud security
Learn where CNAPP and CWPP overlap, where they differ, and how the market is shifting to the more comprehensive and integrated CNAPP...
Wiz achieves Red Hat Vulnerability Scanner Certification
Wiz’s vulnerability scanning is now certified by Red Hat, providing customers with refined assessment of vulnerabilities for Red Hat Products...
The magic of inclusion: Wiz’s journey to democratize cloud security
Empowering every cloud security stakeholder by eliminating barriers...
The wait is over: Wiz releases real-time CSPM
Prevent misconfigurations in your environment from being exploited with Wiz’s real-time CSPM...
Unveiling the power of Wiz's Security Graph with automated blast radius and root cause analysis for cloud incident response
Wiz assists Incident Response IR and SOC teams with containment through automated assessment of security incidents by identifying possible root causes and calculating the potential blast radius of compromised resources...
Celebrating Our $1 Billion Funding Round and $12 Billion Valuation
Extending a heartfelt thanks to our customers, investors, and Wizards...
What does "Platform" mean in cloud security?
Enabling security outcomes for cloud builders and defenders, from code to cloud to defense...
CVE-2024-4040 exploited in the wild: everything you need to know
Detect and mitigate CVE-2024-4040, a critical vulnerability in CrushFTP exploited in the wild. Organizations should patch urgently...
Stay safe with Wiz's winning hand for securing Kubernetes
Ensure that your Kubernetes environments are secure and follow OWASP's Kubernetes Top 10 framework. Generate reports quickly and easily and remediate any issues with actionable insights...
Expanding coverage with Linux runtime
Wiz announces its Runtime Sensor for Linux, expanding coverage of threat detection and response for cloud workloads...
Boosting efficiency with Wiz's AI-driven remediation steps powered by Amazon Bedrock
Wiz introduces AI-remediation steps powered by Amazon Bedrock to empower customers to remediate risks quickly...
What does "democratizing cloud security" mean?
Due to the unprecedented growth of cloud technology, the democratization of cloud security -- making everyone in an organization a stakeholder in security practices -- has become a necessity. But how do organizations undertake this mission?...
Wiz Acquires Gem Security to Reinvent Threat Detection in the Cloud
We’re pushing for consolidation, bolstering our Cloud Detection and Response capabilities, and delivering on the promise of security operations for the cloud era...
Operationalizing cloud security with Wiz and Tines
The Wiz and Tines partnership combines the benefits of visibility and automation, creating an improved cloud security strategy...
Finding the needle in the haystack: effortless SBOM search in your cloud with Wiz
Find out quickly where OS and open-source packages or libraries are deployed in your cloud environments and secure them before potential issues arise...
Wiz Research finds architecture risks that may compromise AI-as-a-Service providers and consequently risk customer data; works with Hugging Face on mitigations
Wiz researchers discovered architecture risks that may compromise AI-as-a-Service providers and put customer data at risk. Wiz and Hugging Face worked together to mitigate the issue...
Defense in depth: XZ Utils
We explore assessment, prevention, and detection strategies for protecting your organization from the XZ Utils vulnerability...
Wizards of security, casting spells on themselves for ultimate digital security
Wiz practices what it preaches. Let’s look at how the security team at Wiz uses the power of the Wiz platform to monitor all its cloud-based infrastructure and services...
Top security talks from KubeCon Europe 2024
KubeCon Europe is the largest open source community conference in Europe with hundreds of talks, many of them about security. All the sessions are available online; in this blog, we’ll discuss our favorites...
Backdoor in XZ Utils allows RCE: everything you need to know
Detect and mitigate CVE-2024-3094, a critical supply chain compromise, affecting XZ Utils Data compression library. Organizations should patch urgently...
Security Posture Management for GitHub: spotting and fixing risks in your GitHub organization just got a lot easier
Wiz SPM for version control systems helps you find and fix risks in your GitHub instance...
Announcing the release of “Google Cloud Security Foundations for Dummies”
We’re excited to announce the release of a comprehensive guide to mastering Google Cloud Security...
Uncle Sam wants you… to secure your cloud: takeaways from the NSA’s top ten cloud security mitigation strategies
We provide top takeaways from the NSA's recommended top ten cloud security mitigation strategies...
Announcing the release of the Financial Services Cloud Security Playbook
Wiz presents a comprehensive guide to mastering cloud security at financial services organizations...
Securing the Cloud Together: Wiz and Splunk team up to secure your cloud resources
Use the Wiz App to consume and analyze data more easily in Splunk via a dedicated dashboard...
Improve MTTR with Wiz’s AI-powered remediation guidance using Microsoft Azure OpenAI service
Organizations can now improve their mean time to remediate MTTR with AI-generated remediation steps...
Sailing Securely Across the SDLC: Introducing Wiz's Image Trust and Kubernetes Audit Log Collector
Secure your applications across the SDLC by deploying only trusted images and monitoring your Kubernetes control plane in near-real time to detect potential threats...
Wiz becomes the first CNAPP to provide DSPM capabilities for Oracle Cloud Infrastructure
Oracle Cloud Infrastructure customers can now effectively protect their sensitive data with Wiz’s Data Security Posture Management DSPM capabilities...
NamespaceHound: protecting multi-tenant K8s clusters
NamespaceHound is an open-source tool for detecting the risk of potential namespace crossing violations and anonymous access opportunities in multi-tenant clusters...
Monitor sensitive data [3**-** ***7] that resides in code
Monitor code for sensitive data to reduce the risk of accidental exposure or compliance violation...
Announcing the K8s LAN Party Challenge
Test your investigation skills and K8s network knowledge in a new CTF event: the K8s LAN Party Challenge!...
CISOs share their top 7 strategies for gaining C-Suite buy-in
In a recent webinar hosted by Wiz, three esteemed CISOs shared their strategies for getting C-suite executives on board with plans for a comprehensive security program...