“Probably the most essential for Cloud Security”
Wiz

Meet Wiz at KubeCon North America

Wiz will be attending and sponsoring KubeCon for the first time and we have a lot to share regarding how enterprises can better secure their container and Kubernetes environments. Come say hi!

1 minutes read
Nicolas Ehrman

The rapid adoption of containers and Kubernetes can often leave security teams detached and without visibility of the true risk in their evolving cloud environments. That’s why Wiz is proud and excited to be attending KubeCon + CloudNativeCon North America 2022 in Detroit for the first time as a platinum sponsor. You'll have the opportunity to talk with our experts on topics such as container and Kubernetes security in cloud environments and how Wiz can help you. But also live demos of the solution and a chance to gather some of our world-class swag. 

Visit our booth 

Swing by Booth #P4 to see a demo and meet with our product experts and research team. We’ll be sharing insights about how you can leverage the power of context to rapidly reduce risk in your cloud and containers environments. We’ll also have two theatre sessions running every hour: 

  • The Why of Wiz 

  • Securing your containers across their lifecycle  

Hear from our amazing speakers, Danny Hershko Shemesh, Software Engineer, and Alon Schindel, Director of Data and Threat Research. 

Join us and learn how Kubernetes is nested in the cloud and how an attacker can gain access and move laterally to compromise other cloud resources. 

  • Wednesday, October 26th, 4:30pm - 5:05pm ET - Kubernetes to Cloud Attack Vectors: Demos Inside: The fine line between your managed Kubernetes services and its specific capabilities and its underlying cloud environment can introduce potential attack vectors and lateral movement paths – from Kubernetes outwards, or from the cloud inwards. This demo-driven presentation will showcase several scenarios where an attacker can gain a foothold in a Kubernetes cluster and more. Learn how to secure your EKS, AKS and GKE from cluster-to-cloud or cloud-to-cluster attacks. We look forward to sharing some Wiz magic with you in Detroit! 

Tags:
#Events

Secure everything you build and run in the cloud

Organizations of all sizes and industries use Wiz to rapidly identify and remove the most critical risks in AWS, Azure, GCP, OCI, and Kubernetes so they can build faster and more securely.

Get a demo

Continue reading

Lateral movement risks in the cloud and how to prevent them – Part 1: the network layer (VPC)

Lior Sonntag
In this first blog post, we will introduce lateral movement as it pertains to the VPC. We will discuss attacker TTPs, and outline best practices for security practitioners and cloud builders to help secure their cloud environment and reduce risk.

Wiz Receives Morgan Stanley Innovation Award at 20th Innovation Summit

Jordan Fylonenko
Recognition in the Cyber category honors Wiz for its exceptional technology partnership with one of the world’s leading financial institutions

AttachMe: critical OCI vulnerability allows unauthorized access to customer cloud storage volumes

Elad Gabay
Before it was patched, #AttachMe could have allowed attackers to access and modify any other users' OCI storage volumes without authorization, thereby violating cloud isolation. Upon disclosure, the vulnerability was fixed within hours by Oracle. No customer action was required.