Wiz

🚨 THE ULTIMATE CLOUD SECURITY CHAMPIONSHIP begins today! 12 monthly challenges. 12 top researchers. One leaderboard. Challenge #1 is LIVE now, created by Scott Piper. Each month brings a new security challenge designed by leading cloud experts. Solve challenges, climb the leaderboard, earn your certificate 🏆 Think you've got what it takes? → https://lnkd.in/euPsZ5Hh

10,000+ players have already joined the Ultimate Cloud Security Championship, and we're just getting started. 💥 🌍 Participants from 20+ countries 🔓 200+ have solved Challenge #1 by Scott Piper 🏆 Only the top make it to the leaderboard It's not too late to prove yourself and claim your spot → https://lnkd.in/eiQYueQ6

You found your sensitive data. Now what? 🧭 "Knowing" where your sensitive data is doesn't help… Unless you know what to do next. How can Wiz help you act on data risk with clarity? The secret? 👉 A clear framework + tools that fit your workflows. 1) See what's exposed, who can access it, and how 2) Prioritize smartly: Use context (like identity + config) to focus on what matters 3) Take action fast 4) Track posture, align with PCI/GDPR/DORA, and export what auditors need 🧠 Learn how leading teams turn data risk into action >> https://lnkd.in/eRXrKN5t

Wiz has been named a Leader in the IDC MarketScape for CNAPP 2025 🙌 "Wiz's strengths, as highlighted by customers, include its agentless cloud security, which simplifies deployment and management. The centralized dashboard provides comprehensive visibility, integrating various security capabilities such as auto-discovery, vulnerability prioritization, and remediation workflows." Philip Bues, Senior Research Manager, Cloud Security, IDC Thank you to IDC for publishing this important research and to our customers for their trust and partnership! 📈 Read more: https://lnkd.in/eJHzzbT6

🎙️ New ep: David Bianco from Splunk with 🔥 insights from a lifetime of threat hunting. Eden Naftali & Amitai Cohen sat down with David, creator of some of the most influential models in cyber detection. What they got into ⬇️ 1) How a threat intel milestone led to the Pyramid of Pain 2) Why detection isn't just about indicators 3) What good threat hunting teams actually do Listen now: 🎧 https://lnkd.in/efmk2PSG 🍏 https://lnkd.in/eGZbPCaM 📺 https://lnkd.in/ewFq4aV7

📣 Fresh off the shelf: Say hello to the Wiz Service Catalog. We're excited to launch a fresh new way to organize cloud risk by the services your teams build, own, and run. 🛠️ Cloud-native apps aren't just stacks of infra, they're made of services developers *actually* own. 🗂️ What's NEW? - See cloud risk organized by service - Align ownership between security & dev - Slash noise. Accelerate remediation. Learn more, now in public preview 👉 https://lnkd.in/e2CmjMNC

🧠 Everyone's racing to use AI. But turns out… not many are securing it. In our latest survey of 96 organizations, 87% are already using AI services like OpenAI and Bedrock. But only 13% are using AI-specific security tools. That's a massive gap. And it's growing. 😬 Most teams don't even know which AI services are running in their environments. Shadow AI isn't just a buzzword, it's happening right now. 📊 We dug into the data to understand what's going wrong, and what to do about it. Learn more: https://lnkd.in/eamkQGY5

 👋 Bye-bye, brittle Regex. Regex has long been the backbone of secret detection, fast, lightweight, and effective for known patterns. But as services and secret types multiply, regex alone is hard to maintain, noisy, and blind to context. At BSidesSF, our team shared how we fine-tuned a small language model to fill those gaps, detecting secrets in code with higher accuracy and less noise, while running efficiently on CPUs. Why does this matter? - This unlocks a whole new class of secrets we couldn't detect with regex alone, high-quality labeled data - Works alongside regex to boost coverage - Understands code context, cutting false positives - Trained using LLMs to generate high-quality labeled data This is how small, focused models are enhancing traditional tools and reshaping the cybersecurity landscape. 📖 Learn more >> https://lnkd.in/ew8f9aGp

📚 NEW REPORT: We just released our "Cloud Attack Retrospective" - with real data from thousands of organizations showing what actually happened in cloud security this past year. What we found: — 35% of breaches started with newly disclosed vulnerabilities — PostgreSQL exposure is more common than expected (33% of environments) — Phishing still works way too well (57% of user compromises) The patterns are clearer than ever 🧪 We mapped the 8 most common MITRE ATT&CK techniques being used in real environments. The full report breaks down each technique with real examples and practical detection guidance. Download here: https://lnkd.in/dssWcYYt

That's a wrap on AWS re:Inforce 2025! 🥳 The Wiz Diner made its *final stop* in Philly, serving fresh donuts and a packed menu of cloud security insights. From an insightful session with Ami Luttwak and co-presentations by AWS's Nicole Moldovan and Alex D., to our Exec CISO Luncheon with Paul Vixie and the Tiki Party — we loved connecting with you all.🤝 Till next time...