Securing clouds, securely
Let's take a look at how Wiz designed the agentless workload scanner to be modular and scalable, and what security measures Wiz takes to protect sensitive customer data.
Ami Luttwak
Ami Luttwak is Co-founder and Chief Technology Officer of Wiz. In his role, Ami leads the strategic vision for Wiz. He has more than 15 years of experience in information security and is an expert in cloud security, spanning infrastructure, networks, and application development. Previously, Ami was the CTO of Adallom, a leading cloud access security broker (CASB), prior to its acquisition by Microsoft in 2015. He was the CTO of Microsoft's Cloud Security Group and led product innovation for the company’s Israel's R&D group, overseeing acquisitions and incubation projects for leading products such as Azure Security Center, Azure Sentinel, and Azure Advanced Threat Protection. Ami served as an R&D team leader and group architect in the Israeli Intelligence Corps and holds an M.Sc. and a B.Sc. in Computer Science from the Hebrew University. He has been featured as a cybersecurity expert in Forbes and ranked #24 on Globe Israel’s people of the year list in 2016.
Ami Luttwak Posts
CTO Point of View: Why Wiz is launching a Runtime Sensor
Today we are excited to announce the Wiz Runtime Sensor. The sensor collects signals in real-time from the workload runtime to simplify threat detection and response in the cloud as part of our Cloud Detection and Response (CDR) capabilities.
Log4Shell 10 days later: Enterprises halfway through patching
Wiz and EY (Ernest & Young) analyzed more than 200 enterprise cloud environments with thousands of cloud accounts. The results were striking: While 93% of all cloud environments are at risk from Log4Shell, on average organizations have patched 45% of their vulnerable cloud resources by Day 10.
Log4Shell Meltdown: How to protect your cloud from this critical RCE threat
Log4Shell Meltdown: How to protect your cloud from this critical RCE threat. In this post, we’ll provide a quick overview of Log4Shell: what it is, its impact, and recommendations for security teams.
Is your organization leaking sensitive Dynamic DNS data? Here’s how to find out
At Black Hat on Wednesday, Wiz researchers disclosed a vulnerability in DNS hosting services that affects millions of corporate endpoints.
Black Hat 2021: How isolated is your AWS cloud environment?
Last November, Wiz Research mapped all the services in AWS that allow access from other accounts to see if any of them might inadvertently expose customers and discovered 3 vulnerabilities in different AWS services that allowed anyone to read or write into the accounts of other AWS customers.
Recent Linux sudo vulnerability affects a major percent of cloud workloads
With an estimated 90% of cloud workloads running Linux based OS, with sudo being common across distributions, many Linux cloud assets are at risk and may be affected. Versions released as far back as 2011 are affected by this vulnerability.
