Lucene search
K
WizblogRecent

645 matches found

Wiz blog
Wiz blog
added 2024/03/06 4:49 p.m.24 views

Authentication bypass vulnerabilities in TeamCity: everything you need to know

Detect and mitigate CVE-2024-27198 CVSS score: 9.8 and CVE-2024-27199 CVSS score: 7.3, authentication bypass vulnerabilities in JetBrains TeamCity...

9.8CVSS7.7AI score0.99991EPSS
Exploits25
Wiz blog
Wiz blog
added 2024/03/06 2:48 p.m.26 views

Wiz becomes the first CNAPP to provide native security to Akamai Linode Cloud

Wiz customers can now secure everything they build and run on Akamai Linode Cloud, providing organizations the broadest cloud coverage out of any CNAPP...

7.3AI score
Exploits0
Wiz blog
Wiz blog
added 2024/02/29 3:12 p.m.17 views

Wiz extends vulnerability scanning support to MacOS instances

Wiz customers can now detect vulnerabilities in MacOS workloads and their software components with agentless scanning, and assess their secure configurations against built-in CIS Benchmarks for Apple MacOS...

7.1AI score
Exploits0
Wiz blog
Wiz blog
added 2024/02/26 5:52 p.m.8 views

DORA: Safeguarding Europe's financial sector

In this post, we take a closer look at the Digital Operational Resilience Act DORA, and discuss how Wiz can help financial institutions navigate these new regulations...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2024/02/26 1:31 p.m.34 views

Welcome to the Zero Critical Club: celebrating flawless cloud security with Wiz

Introducing the "Zero Critical Club" — a growing group of Wiz customers who've achieved the extraordinary feat of having zero critical issues in their environments...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2024/02/21 4:30 p.m.13 views

Proof of storage crypto miners

We explore “proof-of-storage" cryptocurrencies like Chia, the potential for proof-of-storage cryptojacking attacks, and steps defenders can take to detect them...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2024/02/15 2:33 p.m.10 views

Cupid in the cloud: celebrating developer and security team partnerships

In cloud security, the most compelling love story is the one between developers and security teams. This Valentine’s Day, let's shine a spotlight on these dynamic duos...

7.3AI score
Exploits0
Wiz blog
Wiz blog
added 2024/02/12 1:53 p.m.80 views

February Fortinet Advisory: everything you need to know

Fortinet offers guidance to detect and mitigate CVE-2024-21762 and CVE-2024-23113, critical RCE vulnerabilities in FortiOS and FortiProxy, including guidance that organizations should patch urgently...

9.8CVSS9.7AI score0.83428EPSS
Exploits12
Wiz blog
Wiz blog
added 2024/02/09 7:10 p.m.19 views

New attack vectors in EKS

We explore how advancements in EKS Access Entries and Pod Identity have opened new attack vectors and offer examples of how adversaries could exploit them...

7.1AI score
Exploits0
Wiz blog
Wiz blog
added 2024/02/08 6:0 p.m.17 views

Midnight Blizzard attack on Microsoft corporate environment: a detailed analysis, detections and recommendations

Get a detailed analysis of the entire attack chain of Microsoft's breach by Midnight Blizzard APT29, as well as detection and mitigation recommendations...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2024/02/07 1:58 p.m.25 views

Wiz AI-SPM extends support to Microsoft Azure OpenAI Service models

Secure Microsoft Azure AI Services, including Azure OpenAI, with Wiz AI-SPM providing full visibility into AI pipelines and risks on the Wiz Security Graph...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2024/02/06 5:19 p.m.16 views

New EKS Access Management and Pod Identity features: a security analysis

The Wiz research team unpacks the security implications of the new EKS access and identity management features and recommends best practices when using them...

7.4AI score
Exploits0
Wiz blog
Wiz blog
added 2024/02/06 4:6 p.m.59 views

Critical Vulnerabilities in Ivanti Exploited in-the-Wild: everything you need to know

Detect and mitigate CVE-2023-46805, CVE-2024-21887, CVE-2024-21888 and CVE-2024-21893, critical vulnerabilities in Ivanti VPN products. Organizations should patch urgently, and government agencies are instructed to isolate Ivanti VPN instances...

9.1CVSS7.4AI score0.99999EPSS
Exploits26
Wiz blog
Wiz blog
added 2024/02/05 5:28 p.m.135 views

Leaky Vessels: runC and BuildKit container escape vulnerabilities - everything you need to know

Detect and mitigate “Leaky Vessels”, container escape vulnerabilities affecting runC and BuildKit. Learn how to prioritize patching and detect exploitation attempts in runtime...

7.3AI score
Exploits0
Wiz blog
Wiz blog
added 2024/02/05 2:38 p.m.13 views

Wiz Enhances AI-SPM Support for Amazon Bedrock

Safeguard Amazon Bedrock with Wiz AI-SPM capabilities to gain visibility into GenAI pipelines and detect and proactively remove risks...

7.5AI score
Exploits0
Wiz blog
Wiz blog
added 2024/02/01 4:7 p.m.32 views

Secure non-human identities with Wiz’s newest CIEM dashboard

Gain visibility into non-human identities in your environment and protect against risky service accounts with the new Non-Human Identities Dashboard...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2024/01/30 5:13 p.m.19 views

Wiz recognized with top score for the current offering category in The Forrester Wave™: Cloud Workload Security, Q1, 2024

Learn why Forrester recognized Wiz as the top ranked in the current offering category on the market out of the top 13 providers, and how their analysis connects with the Wiz vision...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2024/01/29 4:15 p.m.19 views

5 Surprising facts from the Cloud Security Salary Guide

Wiz is releasing a new report providing insight into various jobs in the field of cloud security and compensation packages they offer; here are 5 key facts from our data...

7.3AI score
Exploits0
Wiz blog
Wiz blog
added 2024/01/26 3:11 p.m.9 views

Everything you need to know about NASCIO’s top 10 priorities for 2024

NASCIO has released its top ten policy and technology priorities for 2024! Learn about how Wiz can help you meet all of the new priorities on the list...

7.3AI score
Exploits0
Wiz blog
Wiz blog
added 2024/01/25 2:14 p.m.11 views

Announcing the Release of "Kubernetes Security for Dummies"

We're excited to announce the release of a comprehensive guide to mastering Kubernetes security: "Kubernetes Security for Dummies." Wiz collaborated with Wiley publications to create this essential resource, which covers various aspects of securing Kubernetes environments...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2024/01/24 3:28 p.m.19 views

Introducing the Cloud Threat Landscape, a new TI resource for cloud defenders

The Cloud Threat Landscape is a threat intelligence database that summarizes cloud incidents and offers insights into targeting patterns and initial access methods...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2024/01/23 5:23 p.m.60 views

Wiz ❤️ HashiCorp: Wiz’s new integration with Terraform Run Tasks helps customers slash risks and boost developer productivity

Mutual Wiz and HashiCorp customers can leverage this integration to scan their IaC configuration and enforce security best practices to reduce risk...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2024/01/17 4:0 p.m.17 views

Wiz Research presents its latest report: “State of AI in the Cloud 2024”

Get a sneak peek at the Wiz research team’s new report examining key observations about AI use in the cloud...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2024/01/16 5:21 p.m.14 views

Crying out Cloud – Our Favorite Stories of 2023

Each member of the Crying out Cloud team at Wiz shares their top stories from the past year...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2024/01/11 3:6 p.m.34 views

Wiz extends its AI-SPM offering to OpenAI platform

Wiz becomes the first CNAPP to provide AI security for OpenAI, allowing data scientists and developers to detect and mitigate risk in their OpenAI organization with a new OpenAI SaaS connector...

7.3AI score
Exploits0
Wiz blog
Wiz blog
added 2024/01/10 3:59 p.m.18 views

Wiz recognized as a leader in Snowflake's inaugural cybersecurity report

Powered by Snowflake, Wiz delivers a Cloud Native Application Protection Platform CNAPP to joint customers...

7.1AI score
Exploits0
Wiz blog
Wiz blog
added 2024/01/05 1:37 a.m.18 views

The top 10 AI security articles you must read in 2024

We've curated a collection of 10 AI security articles that cover novel threats to AI models as well as strategies for developers to safeguard their models...

7.3AI score
Exploits0
Wiz blog
Wiz blog
added 2024/01/02 4:15 p.m.16 views

Choosing an AI-SPM tool: The four questions every security organization needs to ask

Ensure you are staying secure as your organization adopts AI by following these four guiding questions...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2023/12/21 6:12 p.m.14 views

Setting secure defaults on AWS and avoiding misconfigurations

Wiz cloud security researcher, Scott Piper, suggests measures organizations can adopt to ensure secure defaults on AWS and improve their security posture...

7.3AI score
Exploits0
Wiz blog
Wiz blog
added 2023/12/20 3:49 p.m.12 views

How to leverage AI-powered security in your organization

AI-powered security helps organizations improve efficiency and scale their security team, follow this framework to effectively leverage AI in your security org...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2023/12/19 3:32 p.m.12 views

Behind the scenes at the Wiz Booth: how to create a memorable expo experience

Discover how Wiz reinvents its presence at every cybersecurity event, surprising visitors with engaging themes and unique experiences...

7.3AI score
Exploits0
Wiz blog
Wiz blog
added 2023/12/14 4:29 p.m.9 views

Celebrating cloud defenders at the world's fastest-growing organizations

We're giving kudos to the security teams at high-growth organizations who are successfully taming their cloud environments, despite limited budget and resources...

7.3AI score
Exploits0
Wiz blog
Wiz blog
added 2023/12/05 5:50 p.m.11 views

Wiz recognized by Frost and Sullivan as a leading Cloud Native Application Protection Platform for 2023

Learn why Frost & Sullivan's Frost Radar Report describes the Wiz platform "as one of the market’s most powerful cloud infrastructure security platforms."...

7.3AI score
Exploits0
Wiz blog
Wiz blog
added 2023/12/04 3:30 p.m.9 views

Wiz at Re:Invent 2023

See what’s new with Wiz at Re:Invent 2023 and learn about how Wiz and AWS continue to strengthen their strategic partnership, keeping AWS customers’ environments secure...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2023/12/04 12:50 p.m.9 views

Raftt is Now Part of Wiz! Together We Are Empowering Developers.

Wiz is committed to building a solution that security and development teams want. With the acquisition of Raftt, we’re gaining velocity on that journey...

7.3AI score
Exploits0
Wiz blog
Wiz blog
added 2023/11/28 5:13 p.m.14 views

Wiz named a 2023 AWS EMEA Marketplace Partner of the Year

AWS has named Wiz a Marketplace Partner of the Year, recognizing our practice of helping customers drive innovation while keeping security top of mind...

7.3AI score
Exploits0
Wiz blog
Wiz blog
added 2023/11/27 4:17 p.m.20 views

Introducing the Wiz extension: cloud security delivered to your AWS console

Wiz’s new Chrome browser extension brings cloud security to your fingertips and streamlines access to Wiz from your cloud console...

7.1AI score
Exploits0
Wiz blog
Wiz blog
added 2023/11/27 3:10 p.m.24 views

Extend Wiz to your Developers: Enable secure cloud development with agility

New capabilities extend Wiz CNAPP to secure the entire software pipeline, enabling organizations to securely develop for the cloud...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2023/11/22 1:43 p.m.12 views

Biden's AI Executive Order: What it says, and what it means for security teams

The 2023 Executive Order has far-reaching implications for companies relying on AI. Here is a breakdown of it through the lens of a Security Engineer, including an analysis, a summary of the impact on AI safety and privacy protection, and a look at how the order will affect security teams...

7.6AI score
Exploits0
Wiz blog
Wiz blog
added 2023/11/20 3:11 p.m.14 views

Wiz launches support for Google Cloud excessive access findings based on audit logs

Google Cloud customers can now detect excessive access in their GCP environment based on Google audit logs to effectively right-size permissions...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2023/11/19 10:6 p.m.19 views

Unveiling eBPF: Harnessing Its Power to Solve Real-World Issues

Dive in a Kubernetes attack and see how eBPF and other security best practices can prevent these attacks...

7.3AI score
Exploits0
Wiz blog
Wiz blog
added 2023/11/16 2:28 p.m.15 views

Wiz becomes the first CNAPP to provide AI Security Posture Management

Wiz extends its platform to secure AI with AI-SPM capabilities, helping organizations accelerate their AI innovation in the cloud...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2023/11/14 6:2 p.m.16 views

Unleashing the power of cloud security: drive business impact with Wiz

Wiz has helped hundreds of organizations, including 40% of the Fortune 100, improve their security posture and gain operational efficiency...

7.6AI score
Exploits0
Wiz blog
Wiz blog
added 2023/11/13 4:2 p.m.24 views

5 Steps to Establishing a Zero Trust Foundation in the Cloud with Wiz

Gain complete visibility into your environment and its risks to enable a Zero Trust strategy in the cloud...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2023/11/08 4:37 p.m.39 views

Key takeaways from the Wiz 2023 Kubernetes Security Report

Today, Wiz published its 2023 Kubernetes Security Report. Here are some key takeaways...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2023/11/07 7:25 p.m.33 views

PwC and Wiz form strategic alliance in the United Kingdom

PwC UK and Wiz have formed an alliance to bring enhanced security solutions to customers...

7.3AI score
Exploits0
Wiz blog
Wiz blog
added 2023/11/06 5:0 p.m.14 views

Ensuring Supply Chain Security: Verify container image integrity with the Wiz Admission Controller

The Wiz admission controller simplifies supply chain security by ensuring only trusted container images can be deployed in Kubernetes environments...

7.3AI score
Exploits0
Wiz blog
Wiz blog
added 2023/11/03 1:7 p.m.19 views

Eight questions to measure vulnerability remediation "pain"

What is it about certain vulnerabilities that makes them especially hard to deal with, and how can vendors make things easier for security teams?...

7.4AI score
Exploits0
Wiz blog
Wiz blog
added 2023/11/02 4:19 p.m.23 views

Wiz inducted into the JPMorgan Chase Hall of Innovation

We're excited to announce that JPMorgan Chase has made Wiz a new member of their Hall of Innovation!...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2023/11/01 3:29 p.m.68 views

Announcing the EKS Cluster Games

Test your investigation skills and K8s knowledge in a new Wiz-sponsored CTF event: the EKS Cluster Games!...

7.2AI score
Exploits0
Total number of security vulnerabilities645