Wiz

HashiConf is in full swing and we're shipping something big... 🥁🥁🥁 Our HCP Terraform integration is now GA with automatic code-to-cloud mapping! Click any cloud resource and see *exactly* which Terraform file and line created it. Then fix it with a proper PR instead of a console hotfix. That's right - we're catching misconfigurations before they deploy AND tracing live issues back to their source automatically. No tagging required. No detective work. HashiCorp is already using this for their own infrastructure 💪 One more thing - the same security policies now work across your code, pipelines, and runtime! Full details: https://lnkd.in/d6fXd_7i

🚨 We caught active exploitation in the wild by tracking unusual IMDS requests Our research team built a simple hunting method: find processes that don't normally access cloud metadata services, but suddenly started doing it. Works surprisingly well for finding real threats. What we discovered: 1. Pandoc SSRF (CVE-2025-51591) - attackers used HTML iframes to hit IMDS endpoints 2. ClickHouse exploitation - SQL injection to query internal services Full technical breakdown: https://lnkd.in/dZWjPpyM 🧙♂️ — P.S. If you're running web services that process user content (PDFs, HTML, etc), double-check your IMDS configuration. IMDSv1 is still out there and it's a sitting duck for these attacks.

🔎 Everyone talks about CVEs. But do you know what's behind so many breaches? Everyday cloud misconfigurations. Wiz Research dug in and found the 4 most common classes of misconfigurations that quietly open the door to attackers. The blog breaks down >> 1️⃣ How these mistakes actually lead to breaches 2️⃣ Why they're so common 3️⃣ What your team can do to avoid them Cloud security isn't just about chasing CVEs; it's about fixing the basics. Read the full breakdown here: https://lnkd.in/d9Cu5SYq

We can't wait to see you at our first-ever user conference, WIZDOM! 📍 NYC: Nov 3–5 | 📍 London: Nov 17–19 Expect keynotes, hands-on training, customer stories, exclusive swag & happy hours. 🍻 SAVE THE DATE >> www.wiz.io/wizdom Spots are limited for Cisotrack & regular passes

Vibe coding with Lovable makes building apps fast and fun. And now, even more secure. 🔐 New research from Wiz finds that 1 in 5 organizations building with AI-powered platforms are exposed to systemic risks through common misconfigurations. We identified four common, preventable pitfalls 👇 1) Client-side authentication -Hardcoded Credentials visible in browser source code. 2) Exposed secrets - API keys hardcoded in JavaScript files. 3) Open databases - Misconfigured table access rules (RLS) are leaking sensitive data. 4) Publicly facing internal applications - Admin panels and chatbots deployed without authentication. We've collaborated with Lovable to share our findings and promote secure building practices, so teams could enjoy the creativity of vibe coding - without the hidden risks. Read more: https://lnkd.in/eTPWaeZH

When clouds get dark → light the signal 🦇 The Wiz IR team is on standby to engage. Cloud incident? We're already suiting up. Real-time response. Cloud-native expertise. Zero drama. Signal us → https://lnkd.in/eH5GPZR4

🚨Assess the risk of the Shai-Hulud attack in minutes with Wiz’s new AI Threat Intel Investigation tool To help security teams quickly remediate the new Shai-Hulud supply chain worm, we’ve added a powerful new capability to the Wiz MCP Server and Mika AI, Wiz’s security AI assistant. They can now: * Investigate emerging threats in real time * Impact Assessment – Map risks across your environment using Wiz SBOM scanning, vulnerability detection, and threat signals * Generate tailored remediation plans This turns what used to take hours of manual investigation into minutes of AI-driven insights. Why it matters? When new threats surface, security teams often scramble to assess exposure and impact. The new AI capability eliminates the guesswork by instantly connecting fresh threat intelligence to your infrastructure and Wiz’s scanners, detectors, and SBOM analysis: delivering ready-to-execute remediation steps. 👉 Just ask Mika More details in our latest blog post: https://lnkd.in/d7bNd3km

☎️ A new era of incident response starts today: Introducing Wiz IR! Wiz Incident Response is our newest service, built from the cloud, for the cloud. 🔎 Why it matters? Traditional IR isn't designed for the speed and scale of the cloud. Wiz IR changes that with: 1) Rapid scoping from the first suspicious signal 2) Cloud-to-runtime forensics (yes, even Kubernetes + AI-driven threats) 3) Containment + remediation guided by Wiz experts This is more than a service. It's how cloud incident response should be done. 👉 Learn more: https://lnkd.in/eDtNxVMH

🚨 The kernel-level security revolution you can't ignore, a must-listen with Liz Rice! Eden Naftali and Amitai Cohen sit down with Liz Rice, Chief Open Source Officer at Isovalent (Cisco), and a global expert in eBPF, containers, and Kubernetes security.  In this episode:  • How eBPF is reshaping cloud security from the ground up  • Practical strategies to tackle open source supply chain attacks (a hot topic given today’s events) A must-listen for anyone building or securing cloud infrastructure in an era of AI coding and supply chain attacks. 🎙️ Listen now to our NEW Crying Out Cloud episode: 🍏 https://lnkd.in/eBD8VChH 🎧 https://lnkd.in/eP2YsxwG 📺 https://lnkd.in/egKT2Eka

🚨 Shai-Hulud: One of the biggest supply chain attacks of the year is unfolding. On Sept 16, malicious versions of 100+ packages were published to npm, with scripts designed to steal secrets, hijack repos, and auto-propagate malware. All tied back to stolen GitHub tokens from the s1ngularity campaign. 🔍 What teams need to do >> 1. Remove malicious versions & upgrade clean 2. Audit GitHub logs + repos named "Shai-Hulud" 3. Rotate exposed tokens + keys immediately Wiz customers? We've dropped detections in the Threat Center + SBOM so you can instantly assess exposure. 👉 Full research + guidance here: https://lnkd.in/d7bNd3km