Featured
Rules Files for Safer Vibe Coding
Helping LLMs generate safer and more secure code through open-sourced rules files.
Blog
Zero Critical Issues, Infinite Security Potential
Over 50% of Wiz customers have reduced their cloud risk by reaching Zero Critical Issues
DevOps Tools Targeted for Cryptojacking
The Wiz Threat Research team has identified a widespread cryptojacking campaign targeting commonly used DevOps applications including Nomad and Consul.
Introducing Wiz Service Catalog: Democratize Cloud Security with Application Service Visibility
Empower platform teams and developers to reduce noise, scale ownership, and accelerate remediation across cloud-native apps.
Data Foundations: From Insight to Action
Now that you know what data you have and how it’s classified, here’s how Wiz helps you respond—with structured frameworks, flexible remediation paths, and built-in compliance tools
The ROI of DSPM: Why Data Security Posture Management Is a Business Imperative
See how Data Security Posture Management (DSPM) delivers measurable impact across risk reduction, compliance, and operational efficiency.
Deloitte’s Secure by Design (SbD) Approach – Enhanced with Wiz
How Deloitte and Wiz Enable End-to-End Security Without Slowing Down Development
Wiz Data Foundations: Data Classification
A closer look at Wiz’s data classification engine — including our new Novel Classifiers
Ivanti EPMM RCE Vulnerability Chain Exploited in the Wild
Wiz Threat Research has observed exploitation in-the-wild of CVE-2025-4427 and CVE-2025-4428, the latest vulnerabilities affecting Ivanti Endpoint Manager Mobile (EPMM).
Introducing WizOS: Securing Wiz from the ground up with hardened, near-zero-CVE container base images.
WizOS is now available in private preview for Wiz customers. It’s a key part of how we help teams start secure and stay secure with hardened, minimal container images.
What Analyzing Hundreds of Thousands of Cloud Environments Taught Us About Data Exposure
Wiz Research reveals the latest cloud data security trends across hundreds of thousands of real-world environments.
Deployed on AWS: Wiz and AWS Marketplace
Wiz is excited to announce our “Deployed on AWS” status with AWS Marketplace demonstrating our deep partnership with AWS and supporting our customer’s buying decisions
Introducing The Cloud Hunting Games CTF: Test Your Cloud Incident Response Skills
Wiz is excited to announce “The Cloud Hunting Games”, a new hands-on Capture the Flag (CTF) challenge designed to test your cloud incident response skills.
How to Harden GitHub Actions: The Unofficial Guide
Build resilient GitHub Actions workflows with lessons from recent attacks.
Federal Data, Meet your New Bodyguard: DSPM joins Wiz for Government
Wiz is excited to bring Data Security Posture Management (DSPM) into our FedRAMP authorized offering. DSPM enables organizations requiring FedRAMP to automate classification, policy enforcement, and continuous monitoring for their sensitive cloud data.
Wiz Data Foundations: Where’s My Sensitive Data—And Who Can Access It?
A hands-on walkthrough of how to use Wiz to find sensitive data and uncover who can access it.
Introducing the MCP Server for Wiz: Smarter AI Context, Stronger Cloud Security
Unified model context, real-time security answers, and a faster path to remediation.
Research Briefing: MCP Security
The present and future of security for the Model Context Protocol.
CIEM and Secure Cloud Access: Best Practices from Wiz and CyberArk
Learn how to secure your cloud identities and operationalize Zero Standing Privileges with the Wiz and CyberArk integration
Insights from the field: Key Findings from the ICIT report on Government Cloud Security
Wiz partnered with the Institute for Critical Infrastructure Technology (ICIT) publishing a report around findings from a survey given to federal and state agencies, highlighting the growing importance of cloud and AI technologies, and concerns around available resources and data protections.
Top security talks from KubeCon Europe 2025
Many of the talks at KubeCon Europe, Europe’s largest open source community conference, were related to security. Let's discuss some of our favorites.
Crying out Cloud: Our Favorite Stories of 2024
Check out our top podcast episode picks from the past year.
Introducing Wiz Defend: Redefining a new standard for cloud detection and response
Accelerate your cloud SecOps transformation.
CPU_HU: Fileless cryptominer targeting exposed PostgreSQL with over 1.5K victims
Cloud environments at risk: Attackers target weak PostgreSQL instances with fileless cryptominer payloads.