Wiz

Cloud Security Podcast

Cloud & AI Security Podcast & Newsletter by Cloudsec Pros, for Cloudsec Pros

Watch onYoutubeListen onSpotifyListen onApple Podcasts

Top industry leaders chatted with us

Chompie

Vulnerability & Exploit Lead, IBM X-Force

Justin Gardner

Full-time Bug Bounty Hunter · Host, CTBB Podcast · Advisor, CaidoIO

Sam Curry

Hacker · Bug Bounty Hunter

Tanya Janca

Head of Education & Community, Semgrep

Nicole Dove

Head of Security Engineering, Riot Games

Jerry Bell

VP & Chief Information Security Officer, IBM Public Cloud

Sherrod DeGrippo

Director of Threat Intelligence Strategy, Microsoft

Scott Piper

Cloud Security Researcher, Wiz

Day Johnson

Security Engineer, Amazon · Founder & CEO, CyberWox Academy

Anton Chuvakin

Security Advisor, Google Cloud

Chompie

Vulnerability & Exploit Lead, IBM X-Force

Justin Gardner

Full-time Bug Bounty Hunter · Host, CTBB Podcast · Advisor, CaidoIO

Sam Curry

Hacker · Bug Bounty Hunter

Tanya Janca

Head of Education & Community, Semgrep

Nicole Dove

Head of Security Engineering, Riot Games

Jerry Bell

VP & Chief Information Security Officer, IBM Public Cloud

Sherrod DeGrippo

Director of Threat Intelligence Strategy, Microsoft

Scott Piper

Cloud Security Researcher, Wiz

Day Johnson

Security Engineer, Amazon · Founder & CEO, CyberWox Academy

Anton Chuvakin

Security Advisor, Google Cloud

January 14, 2026

CodeBreach: Hijacking the AWS Console with Yuval Avrahami

CodeBreach: how a tiny regex bug in AWS CodeBuild created a serious cloud supply-chain risk

Available on

December 31, 2025

React2Shell, Shai-Hulud 2.0, Gogs Zero-Day & Tika RCE

🎙️ Shai-Hulud → Shai-Hulud 2.0. React2Shell, Apache Tika & a Gogs zero-day—real cloud attacks, explained.

Available on

December 13, 2025

Live Talk: Security Minds from Google Cloud, AWS & Wiz

AI is reshaping cyber defense—from AI-powered attacks to analyst burnout. What matters now at cloud scale.

Available on

November 13, 2025

Cloud Detection Engineering, AI in the SOC and Parallel Parking with Alex Hurtado

Detection engineering just got real — Eden, Amitai & Alex Hurtado on cloud detections, DIY rules, and AI in the SOC

Available on

November 6, 2025

VSCode Extension Secrets, RediShell, & Living-off-the-LLM

Eden and Amitai unpack supply-chain risks in VS Code, RediShell attacker innovation, and AI-powered malware.

Available on

September 15, 2025 EP 14

eBPF, Fishy Book Covers, and Open Source Security with Liz Rice

🚨 Kernel-level security revolution: Liz Rice on eBPF, supply chain attacks & cloud infra you can’t ignore.

Available on

August 17, 2025

Security Metrics, Detection & Response & Paintball with Erik Bloch

From hacking military hardware to leading security at @Illumio — Erik Bloch shares lessons, metrics & scaling CDR.

Available on

Crying Out Cloud Newsletter

Stay Safe & Informed: Receive the Latest Cloud Security News, Real Attack Insights, and Expert Guidance to Protect Your Environment.

Crying Out Cloud Newsletter - July 2025

Wiz Research uncovered a cryptojacking campaign exploiting misconfigured DevOps tools, along with major new vulns in SugarCRM, NetScaler, Sitecore, and Teleport. Plus: Langflow and Open WebUI are under active attack. Get the full scoop in this month’s Crying Out Cloud.

#CryptoJacking#DevOpsExploits

Crying Out Cloud Newsletter - June 2025

This month in cloud security: from zero-day exploits in Ivanti and Commvault to critical vulnerabilities in LangFlow, Azure, and Grafana. Plus, coordinated retail attacks, RedisRaider cryptojacking, and SonicWall exploitation. Tune into Crying Out Cloud for all the insights.

#LangFlowRCE#IvantiZeroDay

Sign up to receive the latest updates in cloud security directly to your inbox

For information about how Wiz handles your personal data, please see our Privacy Policy.