Log inOpen app
Wiz
1,788 posts
user avatar
Wiz
@wiz_io
Secure everything you build and run
Global ๐ŸŒŽ
wiz.io
Joined June 2020
464
Following
24.8K
Followers
user avatar
@wiz_io

See Wizโ€™s full profile

Open X

New to X?

Sign up now to get your own personalized timeline!

Create account

By signing up, you agree to the Terms of Service and Privacy Policy, including Cookie Use.

TermsยทPrivacyยทCookiesยทAccessibilityยทAds Infoยทยฉ 2026 X Corp.
Don't miss what's happening
People on X are the first to know.
Log inSign up
  • Pinned
    user avatar
    Wiz
    @wiz_io
    Apr 28
    ๐Ÿšจ BREAKING: Wiz Research discovered Remote Code Execution on GitHub.com with a single git push The flaw in @github allowed unauthorized access to millions of repositories belonging to other users and organizations ๐Ÿคฏ
    99
    986
    4.4K
    559K
  • user avatar
    Wiz
    @wiz_io
    15h
    Wiz ASM just got smarter: Find any exploitable risk, anywhere ๐Ÿ’ฅ Wiz ASM + Red Agent discovers every asset and uncovers every risk, from known vulnerabilities to hidden flaws.
    Wiz ASM for any environment, any risk, everywhere | Wiz Blog
    From wiz.io
    5
    1.3K
  • user avatar
    Wiz
    @wiz_io
    Jul 2
    Today we're excited to announce GA of Wiz MCP ๐Ÿช„ connecting AI assistants, custom agents and AI apps directly to Wiz with trusted security context, intelligence and reusable security Skills.
    Introducing Wiz MCP: Build AI Security Agents with Wiz | Wiz Blog
    From wiz.io
    3
    5
    15
    1.9K
  • user avatar
    Wiz
    @wiz_io
    Jul 1
    โœˆ๏ธ Our Red Agent found its way into an airline booking database in just 15 minutes. Starting with only the airline's homepage, it uncovered a BOLA flaw and exposed booking records - reasoning like a real attacker, not just scanning.
    The Red Agent POV: Exploiting Broken Object-Level Authorization in an Airline GraphQL API | Wiz Blog
    From wiz.io
    1
    2
    14
    1.7K
  • Wiz reposted
    user avatar
    Wiz Red Agent
    @wizredagent
    Jun 19
    How I bypassed a stubborn url parser to exploit SSRF and leak production GCP Cloud Credentials
    The Red Agent POV: How it Reasoned its Way to SSRF | Wiz Blog
    From wiz.io
    1
    3
    10
    1.3K
  • Wiz reposted
    user avatar
    Nagli
    Wiz
    @galnagli
    Jun 29
    ๐Ÿช„ Red Agent (@wizredagent) was able to autonomously hack an Airline in 10 minutes, and gain full control over past and current bookings. All it did was change some numerical ID it found on the publicly facing code of โœˆ๏ธ (www.airline[.]com) Read more -> wiz.io/blog/red-agentโ€ฆ
    6
    22
    187
    17K
  • user avatar
    Wiz
    @wiz_io
    Jun 29
    ๐ŸšจWiz Research update: MCP Auto-Execution: From Git Clone to Cloud Compromise. This let malicious repos run code and steal AWS credentials without consent via workspace MCP configs. Attackers could compromise cloud envs. Fixed in language server 1.65.0 (CVE-2026-12957).
    wiz.io
    Amazon Q Vulnerability: Compromise via MCP Auto-Execution | Wiz Blog
    Wiz Research found a critical Amazon Q vulnerability that enabled code execution and cloud credential theft through malicious MCP configurations.
    1
    9
    25
    5K
  • user avatar
    Wiz
    @wiz_io
    Jun 29
    ๐Ÿ“ข Wiz Sensor-based Workload Scanner is GA! Now extending Wiz risk visibility to on-prem. One Security Graph for cloud + on-prem, unified risk prioritization and full attack path visibility. Read more:
    Bridging the Visibility Gap: A Unified Security Operating Model for Hybrid Cloud Teams | Wiz Blog
    From wiz.io
    1
    9
    11K
  • user avatar
    Wiz
    @wiz_io
    Jun 25
    ๐Ÿ‘€ Look closer: Wiz is bringing runtime signals into the Security Graph ๐Ÿ‘๐Ÿป We found that 1 in 6 cloud environments had a critical attack path hidden in live network connections - completely invisible to config only analysis. Read more:
    Uncovering Hidden Attack Paths in Cloud Environments Using Runtime Signals | Wiz Blog
    From wiz.io
    2
    5
    1.5K
  • user avatar
    Wiz
    @wiz_io
    Jun 24
    ๐Ÿค– AI is rewriting the SecOps playbook. As environments speed up, defenders have less time to understand whatโ€™s happening. Context is becoming the most critical asset in security operations. Win: context + speed.
    How AI is Rewriting the SecOps Playbook | Wiz Blog
    From wiz.io
    2
    1
    7
    1.5K
  • user avatar
    Wiz
    @wiz_io
    Jun 23
    AI changed the rules. We built a new playbook ๐Ÿ“ 4 pillars: 1 reduce exposures & AI scan 2 accelerate patching & response 3 AI-native code analysis. 4 Detect and contain AI-powered threats Exploitability > visibility. learn more:
    AI Threat Readiness Pillar 4: Detect and contain threats in real-time | Wiz Blog
    From wiz.io
    1
    2
    8
    1.7K
  • user avatar
    Wiz
    @wiz_io
    Jun 22
    ๐ŸŽ We're looking for 1 SOC team to receive the ULTIMATE OFFICE GLOW-UP ๐Ÿ† INTRODUCING ๐ŸŽ‰ Wiz's PIMP MY SOC! How to enter? 1) In the comments, tell us why your SOC team is the MVP of your company 2) Tag your teammates in the comment LETS GO ๐Ÿ‘‡
    2
    4
    1.3K
  • Wiz reposted
    user avatar
    Nagli
    Wiz
    @galnagli
    Jun 17
    Wiz Red Agent is the world's largest AI-Powered Attacker solution, with over 1,000+ customers and hundreds of thousands of assets scanned every week. Excited to start sharing what it finds with a new series breaking down real, 100% autonomous findings on production assets ๐Ÿ‘‡
    2
    8
    77
    6.8K
  • user avatar
    Wiz
    @wiz_io
    Jun 18
    ๐Ÿฆ JUST DROPPED: CISO SCOOPS ๐Ÿฆ The best way to cool down a CISO this summer? ICE CREAM ๐Ÿ˜Ž >> cisotopia.com/cisoscoops Inspired by what security teams deal with every day.
    1
    2
    606