645 matches found
Authentication bypass vulnerabilities in TeamCity: everything you need to know
Detect and mitigate CVE-2024-27198 CVSS score: 9.8 and CVE-2024-27199 CVSS score: 7.3, authentication bypass vulnerabilities in JetBrains TeamCity...
Wiz becomes the first CNAPP to provide native security to Akamai Linode Cloud
Wiz customers can now secure everything they build and run on Akamai Linode Cloud, providing organizations the broadest cloud coverage out of any CNAPP...
Wiz extends vulnerability scanning support to MacOS instances
Wiz customers can now detect vulnerabilities in MacOS workloads and their software components with agentless scanning, and assess their secure configurations against built-in CIS Benchmarks for Apple MacOS...
DORA: Safeguarding Europe's financial sector
In this post, we take a closer look at the Digital Operational Resilience Act DORA, and discuss how Wiz can help financial institutions navigate these new regulations...
Welcome to the Zero Critical Club: celebrating flawless cloud security with Wiz
Introducing the "Zero Critical Club" — a growing group of Wiz customers who've achieved the extraordinary feat of having zero critical issues in their environments...
Proof of storage crypto miners
We explore “proof-of-storage" cryptocurrencies like Chia, the potential for proof-of-storage cryptojacking attacks, and steps defenders can take to detect them...
Cupid in the cloud: celebrating developer and security team partnerships
In cloud security, the most compelling love story is the one between developers and security teams. This Valentine’s Day, let's shine a spotlight on these dynamic duos...
February Fortinet Advisory: everything you need to know
Fortinet offers guidance to detect and mitigate CVE-2024-21762 and CVE-2024-23113, critical RCE vulnerabilities in FortiOS and FortiProxy, including guidance that organizations should patch urgently...
New attack vectors in EKS
We explore how advancements in EKS Access Entries and Pod Identity have opened new attack vectors and offer examples of how adversaries could exploit them...
Midnight Blizzard attack on Microsoft corporate environment: a detailed analysis, detections and recommendations
Get a detailed analysis of the entire attack chain of Microsoft's breach by Midnight Blizzard APT29, as well as detection and mitigation recommendations...
Wiz AI-SPM extends support to Microsoft Azure OpenAI Service models
Secure Microsoft Azure AI Services, including Azure OpenAI, with Wiz AI-SPM providing full visibility into AI pipelines and risks on the Wiz Security Graph...
New EKS Access Management and Pod Identity features: a security analysis
The Wiz research team unpacks the security implications of the new EKS access and identity management features and recommends best practices when using them...
Critical Vulnerabilities in Ivanti Exploited in-the-Wild: everything you need to know
Detect and mitigate CVE-2023-46805, CVE-2024-21887, CVE-2024-21888 and CVE-2024-21893, critical vulnerabilities in Ivanti VPN products. Organizations should patch urgently, and government agencies are instructed to isolate Ivanti VPN instances...
Leaky Vessels: runC and BuildKit container escape vulnerabilities - everything you need to know
Detect and mitigate “Leaky Vessels”, container escape vulnerabilities affecting runC and BuildKit. Learn how to prioritize patching and detect exploitation attempts in runtime...
Wiz Enhances AI-SPM Support for Amazon Bedrock
Safeguard Amazon Bedrock with Wiz AI-SPM capabilities to gain visibility into GenAI pipelines and detect and proactively remove risks...
Secure non-human identities with Wiz’s newest CIEM dashboard
Gain visibility into non-human identities in your environment and protect against risky service accounts with the new Non-Human Identities Dashboard...
Wiz recognized with top score for the current offering category in The Forrester Wave™: Cloud Workload Security, Q1, 2024
Learn why Forrester recognized Wiz as the top ranked in the current offering category on the market out of the top 13 providers, and how their analysis connects with the Wiz vision...
5 Surprising facts from the Cloud Security Salary Guide
Wiz is releasing a new report providing insight into various jobs in the field of cloud security and compensation packages they offer; here are 5 key facts from our data...
Everything you need to know about NASCIO’s top 10 priorities for 2024
NASCIO has released its top ten policy and technology priorities for 2024! Learn about how Wiz can help you meet all of the new priorities on the list...
Announcing the Release of "Kubernetes Security for Dummies"
We're excited to announce the release of a comprehensive guide to mastering Kubernetes security: "Kubernetes Security for Dummies." Wiz collaborated with Wiley publications to create this essential resource, which covers various aspects of securing Kubernetes environments...
Introducing the Cloud Threat Landscape, a new TI resource for cloud defenders
The Cloud Threat Landscape is a threat intelligence database that summarizes cloud incidents and offers insights into targeting patterns and initial access methods...
Wiz ❤️ HashiCorp: Wiz’s new integration with Terraform Run Tasks helps customers slash risks and boost developer productivity
Mutual Wiz and HashiCorp customers can leverage this integration to scan their IaC configuration and enforce security best practices to reduce risk...
Wiz Research presents its latest report: “State of AI in the Cloud 2024”
Get a sneak peek at the Wiz research team’s new report examining key observations about AI use in the cloud...
Crying out Cloud – Our Favorite Stories of 2023
Each member of the Crying out Cloud team at Wiz shares their top stories from the past year...
Wiz extends its AI-SPM offering to OpenAI platform
Wiz becomes the first CNAPP to provide AI security for OpenAI, allowing data scientists and developers to detect and mitigate risk in their OpenAI organization with a new OpenAI SaaS connector...
Wiz recognized as a leader in Snowflake's inaugural cybersecurity report
Powered by Snowflake, Wiz delivers a Cloud Native Application Protection Platform CNAPP to joint customers...
The top 10 AI security articles you must read in 2024
We've curated a collection of 10 AI security articles that cover novel threats to AI models as well as strategies for developers to safeguard their models...
Choosing an AI-SPM tool: The four questions every security organization needs to ask
Ensure you are staying secure as your organization adopts AI by following these four guiding questions...
Setting secure defaults on AWS and avoiding misconfigurations
Wiz cloud security researcher, Scott Piper, suggests measures organizations can adopt to ensure secure defaults on AWS and improve their security posture...
How to leverage AI-powered security in your organization
AI-powered security helps organizations improve efficiency and scale their security team, follow this framework to effectively leverage AI in your security org...
Behind the scenes at the Wiz Booth: how to create a memorable expo experience
Discover how Wiz reinvents its presence at every cybersecurity event, surprising visitors with engaging themes and unique experiences...
Celebrating cloud defenders at the world's fastest-growing organizations
We're giving kudos to the security teams at high-growth organizations who are successfully taming their cloud environments, despite limited budget and resources...
Wiz recognized by Frost and Sullivan as a leading Cloud Native Application Protection Platform for 2023
Learn why Frost & Sullivan's Frost Radar Report describes the Wiz platform "as one of the market’s most powerful cloud infrastructure security platforms."...
Wiz at Re:Invent 2023
See what’s new with Wiz at Re:Invent 2023 and learn about how Wiz and AWS continue to strengthen their strategic partnership, keeping AWS customers’ environments secure...
Raftt is Now Part of Wiz! Together We Are Empowering Developers.
Wiz is committed to building a solution that security and development teams want. With the acquisition of Raftt, we’re gaining velocity on that journey...
Wiz named a 2023 AWS EMEA Marketplace Partner of the Year
AWS has named Wiz a Marketplace Partner of the Year, recognizing our practice of helping customers drive innovation while keeping security top of mind...
Introducing the Wiz extension: cloud security delivered to your AWS console
Wiz’s new Chrome browser extension brings cloud security to your fingertips and streamlines access to Wiz from your cloud console...
Extend Wiz to your Developers: Enable secure cloud development with agility
New capabilities extend Wiz CNAPP to secure the entire software pipeline, enabling organizations to securely develop for the cloud...
Biden's AI Executive Order: What it says, and what it means for security teams
The 2023 Executive Order has far-reaching implications for companies relying on AI. Here is a breakdown of it through the lens of a Security Engineer, including an analysis, a summary of the impact on AI safety and privacy protection, and a look at how the order will affect security teams...
Wiz launches support for Google Cloud excessive access findings based on audit logs
Google Cloud customers can now detect excessive access in their GCP environment based on Google audit logs to effectively right-size permissions...
Unveiling eBPF: Harnessing Its Power to Solve Real-World Issues
Dive in a Kubernetes attack and see how eBPF and other security best practices can prevent these attacks...
Wiz becomes the first CNAPP to provide AI Security Posture Management
Wiz extends its platform to secure AI with AI-SPM capabilities, helping organizations accelerate their AI innovation in the cloud...
Unleashing the power of cloud security: drive business impact with Wiz
Wiz has helped hundreds of organizations, including 40% of the Fortune 100, improve their security posture and gain operational efficiency...
5 Steps to Establishing a Zero Trust Foundation in the Cloud with Wiz
Gain complete visibility into your environment and its risks to enable a Zero Trust strategy in the cloud...
Key takeaways from the Wiz 2023 Kubernetes Security Report
Today, Wiz published its 2023 Kubernetes Security Report. Here are some key takeaways...
PwC and Wiz form strategic alliance in the United Kingdom
PwC UK and Wiz have formed an alliance to bring enhanced security solutions to customers...
Ensuring Supply Chain Security: Verify container image integrity with the Wiz Admission Controller
The Wiz admission controller simplifies supply chain security by ensuring only trusted container images can be deployed in Kubernetes environments...
Eight questions to measure vulnerability remediation "pain"
What is it about certain vulnerabilities that makes them especially hard to deal with, and how can vendors make things easier for security teams?...
Wiz inducted into the JPMorgan Chase Hall of Innovation
We're excited to announce that JPMorgan Chase has made Wiz a new member of their Hall of Innovation!...
Announcing the EKS Cluster Games
Test your investigation skills and K8s knowledge in a new Wiz-sponsored CTF event: the EKS Cluster Games!...