How to patch container base images: Methods and best practices
Container base image patching is the process of updating the OS and runtime libraries in the base layer of a container image to remediate vulnerabilities and keep images secure.
CloudSec Academy
Bienvenido a CloudSec Academy, tu guía para navegar por la sopa de alfabeto de los acrónimos de seguridad en la nube y la jerga de la industria. Cortar el ruido con contenido claro, conciso y elaborado por expertos que cubra los fundamentos de las mejores prácticas.
Ver a Wiz en acción
Descubre cómo Wiz convierte los fundamentos de la seguridad en la nube en resultados reales.
Cloud storage costs and secure optimization
Cloud storage cost refers to the total expense associated with storing, accessing, and managing data across cloud platforms like AWS S3, Azure Blob Storage, and Google Cloud Storage.
GCP pricing: Breaking down costs in 2026
To control Google Cloud spend, you first need to understand how the platform charges for resources. GCP’s billing is usage-based, but the pricing model you choose can drastically change your costs.
What is SIEM? The cloud-native security evolution
Equipo de expertos de Wiz
SIEM stands for Security Information and Event Management. It is a unified platform that combines Security Information Management (SIM) and Security Event Management (SEM).
Ver Wiz en acción
Wiz conecta los puntos a través de tu nube, desde el código hasta el tiempo de ejecución.
SIEM vs SOAR: What is the real difference?
Equipo de expertos de Wiz
The main difference is that SIEM focuses on detection and visibility, while SOAR focuses on response and automation. SIEM collects and analyzes vast amounts of log data, whereas SOAR acts on processed alerts and findings.
Kubernetes engineer job description
Equipo de expertos de Wiz
A Kubernetes engineer is a specialized tech role responsible for the design, deployment, and maintenance of container orchestration platforms.
Explicación del cumplimiento de la seguridad de los datos
El cumplimiento de la seguridad de los datos es un aspecto crítico de la gobernanza de datos que implica el cumplimiento de las normas y reglamentos centrados en la seguridad establecidos por los organismos supervisores y reguladores, incluidas las agencias federales.
14 OSS Application Security Tools by Use Case
The top 14 open-source application security tools—including SCA, secrets scanning, and application security testing tools—to help you streamline the critical process of securing your apps from threats and vulnerabilities.
CI/CD security tools
CI/CD security tools automate security checks in development pipelines to identify vulnerabilities and misconfigurations during code changes, ensuring continuous security.
Cross-Site Request Forgery (CSRF): Examples and Prevention
Discover how CSRF attacks work, identify common vulnerabilities, and learn the best methods for preventing CSRF attacks to keep your applications secure.
¿Qué es un Prompt Injection Attack?
Los ataques de inyección de avisos son una amenaza para la seguridad de la IA en la que un atacante manipula el mensaje de entrada en los sistemas de procesamiento de lenguaje natural (NLP) para influir en la salida del sistema.
What is dependency scanning in cloud security?
Equipo de expertos de Wiz
Dependency scanning is the automated analysis of the third-party libraries, frameworks, and packages that developers use to build applications.
What is Azure container security scanning?
Equipo de expertos de Wiz
Azure Container Security Scanning finds vulnerabilities and misconfigurations in container images and workloads in Azure Container Registry and AKS.