#Research

Merav Bar, Gal Nagli, Danielle Aminov

October 31, 2024

Supply chain attack in popular lottie-player library compromises websites with malicious Web3 wallet prompts – update or revert the library to avoid the compromised versions.

Daniel Lazarev, Erez Harush

October 23, 2024

AskAI – Text to Security Graph Query

Merav Bar, Gili Tikochinski

October 10, 2024

Detect and mitigate critical vulnerabilities (CVE-2024-9463, CVE-2024-9464, CVE-2024-9465, CVE-2024-9466, CVE-2024-9467) in Palo Alto Networks’ Expedition tool. Organizations should patch urgently.

Merav Bar, Scott Piper

September 29, 2024

Detect and mitigate CVE-2024-47076, CVE-2024-47175, CVE-2024-47176, and CVE-2024-47177 vulnerabilities impacting CUPS and IPP packages.

Shir Tamari, Ronen Shustin, Andres Riancho

September 26, 2024

Critical severity vulnerability CVE-2024-0132 affecting NVIDIA Container Toolkit and GPU Operator presents high risk to AI workloads and environments.

Merav Bar, Amitai Cohen

September 23, 2024

Strategies for tracking and defending against malicious activity and threats in the cloud using atomic indicators of compromise (IOCs).

Scott Piper

September 3, 2024

This feature of caching services can result in unexpected behavior. Here's how to prevent sensitive data from being accidentally exposed.

Scott Piper

August 16, 2024

Advice for tackling and completing these major projects, including metrics, alerts, and prevention strategies.

Mitch Herckis, Alon Schindel

August 14, 2024

Our next steps and hope for the industry.

Gili Tikochinski, Scott Piper

August 8, 2024

Wiz Threat Research recently spotted a new phishing campaign targeting AWS accounts.

Avigayil Mechtinger, Gili Tikochinski, Dor Laska

July 25, 2024

Wiz researchers discover ongoing threat to popular testing framework.

Hillai Ben-Sasson

July 17, 2024

Wiz Research uncovers vulnerabilities in SAP AI Core, allowing malicious actors to take over the service and access customer data.