Prototype Pollution is a vulnerability in JavaScript that allows for the overwriting of the __prototype__ object. By doing this, an attacker can overwrite the default properties of an object to...
Hal Denton // Have you ever been given an encrypted hard drive to perform forensic analysis on? What could go wrong? Probably the first thought rolling through your mind is […] The post Who’s...
Automatically push Wiz-identified cloud security issues to Snowflake to analyze and accurately report on your cloud security metrics.
Recent attacks leverage CVE-2021-21974 to install ransomware on VMWare ESXi servers. Security teams are advised to patch and stay vigilant for indicators of compromise.
Wiz's State of the Cloud 2023 report provides analysis of trends in cloud usage such as multi-cloud, use of managed services and more. In addition, the report highlights notable cloud risks based...
The article begins with a blurb on how to and how NOT to run a good bug bounty program. The first issue is NOT following up with emails from whitehats. Second is paying less than the advertised...
On 2023-02-03, a campaign was reported, involving an unknown actor, gaining initial access via 1-day vulnerability, to achieve RansomOp. The following tools were observed: Babuk.
Learn Rego basics from Wiz to express policy as code for your cloud security.
HypeBears is a collectable set of NFT bears. mint is used to create new bears within this ecosystem. When minting the NFTs, the code uses _safeMint from the OZ reference implementation. There is a...
Null dereferences are commonly known as an unexploitable bug. Sure, it's a denial of service but not much else. Well, in the context of some situations, we can make it more. In Linux, when a...
Equalizer Finance is a decentralized market focused on flash loans. The number of liquidity tokens created while minting was calculated based upon the amount of underlying tokens in the contract....
On 2023-02-01, a campaign was reported, involving HeadCrab operator, gaining initial access via Software misconfig, while using Misconfigured Redis abuse, targeting Redis to achieve Resource...
Copy on Write is functionality in the Linux kernel for only remapping memory once it has been written to after a fork. This is a major optimization, since forked code can reuse memory from other...
Simplify and centralize security and compliance management by sending audit-worthy events from Wiz into AWS CloudTrail Lake.
Code4rena is a crowd sourced security audit platform. Recently, Trader Joe V2 received a security audit. Joe V2 is a decentralized exchange based on Liquidity Book, an AMM protocol. The first...
Huawei's security hypervisor is leveraging the virtualization extensions of the ARMv8-A architecture. Additionally, it makes use of ARM TrustZone - a hardware enforced separation from called...
The Horton Principle is a principle that should always be followed in cryptography: "mean what you sign and sign what you mean". Any time this can be violated, there is a major security problem....
In the smart contract code, there is a function that takes in several address for storing an NFT. This includes the deployer (owner) and the beneficiary. When it does the saving, there is no...
On 2023-01-30, an incident was reported, involving an unknown actor, gaining initial access via End-user compromise, while using Phishing, targeting GitHub to achieve Data exfiltration.
Shell commands that once had to be run manually now can be coded into a custom rule and run daily using Wiz agentless workload scanning.
Authored by Fernando Ruiz The popularity of AI-based mobile applications that can create artistic images based on pictures, such as... The post The Rise and Risks of AI Art Apps appeared first on...
On a recent internal assessment, we ran into a problem. While holding low-privileged access to an internal Windows host, we realised the software on the host was communicating to a remote API...
Learn how to improve cluster security with user namespaces, a new feature introduced in Kubernetes v1.25.
Many iPods were jailbroken back in the day. However, many of them survived the craze without being touched. To the author, this is unacceptable! So, they went down the rabbit hole of Jailbreaking...
Microsoft Remote Procedure Call (MSRPC) is a prevalent communication mechanism that provides an extensible framework for defining server/client interfaces. The author wrote a tool called...
Edge Side Include (ESI)is a small set of XML tags in HTTP solutions, like caching or a reverse proxy, to fetch more information about a page for which a template is cached. For instance, a caching...
AWS Admins use CloudTrail to monitor API activity within their accounts. This allows suspicious activity to be discovered quickly. So, what would happen if we could bypass this? An admin could...
Oracle CDE (Common Data Environment) is a tool to collect all project information into a single platform. This is done via cloud syncing, I presume. The authors of this post had recently found...
Adobe ColdFusion is an IDE by Adobe Systems. It used to develop Colfusion Markup Language apps. The administrator has all server databases stored in a single location, which is where the bug...
The Issuer on a Certificate is completely useless. Many of them are defunct companies or were bought out by another Certificate company. Since certs can last a long time or the purchasing company...