Wiz

Here is your cloud defense CHEAT SHEET ⤵ Today, we're launching a new database on our Cloud Threat Landscape with cloud **defense** methods (mapped to the MITRE D3FEND Matrix) and the attack techniques they defend against. This new data joins the existing information we've compiled about incidents, threat actors, techniques, and targeted technologies, providing even more comprehensive insights into the cloud threat landscape. Check out our new "Defenses" tab here: threats.wiz.io/defenses In honor of this launch, We created a 'Cloud Security Periodic Table' that you can keep with you at all times when you need the TL;DR for cloud defenses and security measures. Download a printable version here: https://lnkd.in/gf5t8FYT 👀 P.S. You might even get a chance to take a 'Periodic Table' poster home next time you visit one of our conference booths... 🙃

🎙️ Tune in to all you need to know about CVE-2024-37032, aka #Probllama 🎙️ Join Shir Tamari, Amitai Cohen, and Eden Naftali, as they dive into the latest discovery by Wiz's research team — a critical vulnerability in Ollama, a popular #AI application. In this episode, we explore: 🦙 The technical details of CVE-2024-37032 😈 How an attacker can abuse this vulnerability 🛡️ Steps AI users can take to defend themselves This isn't just about initial access or crypto mining. This flaw could allow attackers to gain remote code execution and alter prompt answers to generate misleading information. Listen to the full 'Crying Out Cloud' podcast episode below: https://lnkd.in/dwchRjEX

💥 EXCLUSIVE: Wiz Research uncovers CVE-2024-37032, aka #Probllama — a vulnerability in Ollama that left thousands of AI models exposed 😲 This flaw could allow attackers to gain remote code execution and alter prompt answers to generate misleading information. Security teams should update their Ollama instances to the latest version to mitigate this vulnerability. Kudos to our research team, Sagi Tzadik and Shir Tamari for uncovering this and to Ollama for the collaboration with the fast fix 🚀 https://lnkd.in/eXwZpnNN

How did Wiz help Stanford University empower its departments to self-manage cloud security? "Because Wiz is agentless, we don't have to worry about anyone forgetting to install software—we have visibility into everything we need." Noah Abrahamson, Director of Cloud Security, Stanford University Here's how: 🔍 Real-time visibility across AWS, Azure, and GCP ⚡ Simplified security for 20k+ faculty and staff 🛡️ Enhanced risk management by a 13-person security team By federating security management, Stanford's teams can focus on innovation, from reducing fossil fuels to advancing healthcare. Discover more below 💡 https://lnkd.in/gHxgMYRd

#GenAI is reshaping tech with automation and data insights, but it also brings new security challenges. The latest Gartner® report highlights key risks: 🔐 Privacy & data security: Protect sensitive info from breaches. ⚔️ Enhanced attack efficiency: Prepare for smarter, autonomous cyber threats. 📰 Misinformation: Combat fake news and social manipulation. 🕵️♂️ Fraud & identity risks: Safeguard against deep-fake scams. At Wiz, we think that these risks are also chances for innovation, by integrating GenAI solutions into your security strategies. 👉 Learn more below https://lnkd.in/e5xSzSdQ

Wiz for Gov is now in-process for DoD IL4 authorization 🏆 We're super excited to partner with the Department of Defense to secure everything they build and run in the cloud. This milestone is a huge step forward in protecting critical defense data and ensuring top-notch security for the Defense Industrial Base. 🌐 Why is this so important? - Meeting IL4 requirements means Wiz can process and store controlled unclassified information with the highest standards. - With 97% of DoD's cloud budget going to commercial providers, securing these investments is paramount. - Our tech helps DoD and defense contractors detect and mitigate risks in real time, keeping their cloud environments safe. We're grateful to our government sponsors for their support and look forward to continuing this journey together. Learn more below: https://lnkd.in/eQFHPM-z

Threats.wiz.io now features more than 200 incidents [yes🦾]! Check out our NEW upgraded RSS feed with detailed, autogenerated summaries. Stay updated with the latest in our Cloud Threat Landscape, refreshed daily by the Wiz Threat Research Team 🔍. What else is new? 🔢 43 new incidents 👥 12 new actors 🛠️ 11 new techniques 🔧 22 new tools 🎯 11 new targeted technologies Stay tuned for new features coming soon 🤫

📺 Huge thanks to Amazon's CSO Stephen Schmidt for the big shoutout and kind words about Wiz on CNBC 🔥🔥🔥 It means the world to have the trust and validation of cloud security leaders like Stephen and Amazon. Can't wait to create more magic with you 🪄

👟⚽️ Presenting Wiz's UEFA 2024 Football (or soccer 😉) prediction game! Sure, Wiz FC might be sitting out this year, but when it comes to defending the cloud — we're always in the game 🛡️ Want to join the Wiz FC team and snag an exclusive shirt? Here's how to play: 🏟️ Drop in the comments below your opening UEFA match score prediction (Germany vs. Scotland). 🏟️ Submit an accurate score prediction before the match starts (Friday, 3 pm ET). 🏟️ Nailed the score? - YOU WIN. Good luck 🤩 #Euro2024

🕹️ Our latest game-changers: custom runtime rules and runtime response policies. Defense-in-depth strategy is 🔑. Our newest features add powerful layers to your ☁️ defense, ensuring threats are spotted fast and stopped dead in their tracks. Here's the scoop: 🎯 Take control with tailored threat detection rules, keeping your cloud safe in real-time. Get extra protection, boost visibility, and nail those compliance needs effortlessly. Plus, with integration into the automated response. ⚙️ Say goodbye to manual efforts and hello to automated blocking- Combat high-certainty threats instantly, scale effortlessly, and free up your team for strategic moves. With triggers from custom rules and broad threat categories. 🔒 Learn more: https://lnkd.in/g-2_QP3c