Crying Out Cloud

Roy Reznik, Co-founder and VP of R&D at Wiz, shares his fascinating journey from Tel Aviv to London and the cultural shifts within startup dynamics. He emphasizes the importance of embedding security into development practices and fostering a proactive culture among developers. The conversation also explores innovative security strategies at Wiz, alongside insights on the evolving role of AI in development teams. Interwoven are amusing anecdotes, including a playful dog encounter and spirited basketball debates, adding depth to his tech saga.

🎙️ Unpack AWS re:Invent's top announcements, trends, and what's next for cloud practitioners with @Scott Piper! Join Eden Naftali and Amitai Cohen in our latest #CryingOutCloud episode featuring Scott Piper, Wiz's Principal Cloud Security Researcher and "cloud security historian". In this episode: 🌟 AWS re:Invent highlights: Aurora DSQL, Nova genAI, EKS Auto Mode 🔒 Security updates on RCPs, VPC Block Public Access, Declarative Policies for EC2 🎬 Scott's favorite cloud-themed movies from Wiz Video World (Pulp Encryption, anyone?)

Join Johann Rehberger, Red Team Director at Electronic Arts and cybersecurity expert, as he shares his unique journey from database enthusiast to security innovator. He dives into red teaming strategies and the importance of ethical hacking in today’s AI landscape. Johann also reveals insights from his cutting-edge research and discusses the vulnerabilities in AI systems, including Unicode exploitation. Plus, he shares a funny anecdote about his alias, Wunderwuzzi, adding a personal touch to this tech-savvy conversation.

🎙️ Tune in to the latest #CryingOutCloud episode featuring Tanya Janca, where we dive into all things cloud! Join Eden and Amitai as they welcome Tanya Janca, founder of 'We Hack Purple', and the author of 'Alice and Bob Learn Application Security'. She's seen it all—from launching AppSec programs to teaching secure coding and leading on education at Semgrep. In this episode: 🌐 Building security programs from scratch 🔍 The value of static analysis tools for developers 🇨🇦 The Canadian cybersecurity landscape and her take on global challenges 💡 Tips for securing AI applications in the age of generative AI

🎙️ Ready for the latest on Hybrid Cloud Attacks, Linux Malware, and LLMJacking? Join our hosts Eden Koby Naftali and Amitai Cohen in our NEW #CryingOutCloud episode. In this episode: 📌 The perfctl malware campaign—stealthily mining crypto on thousands of Linux machines undetected for years 📌 Storm-0501 hybrid cloud attacks, targeting everything from hospitals to law enforcement, with ransomware and stolen admin credentials 📌 LLMJacking—the latest evolution in malicious cloud access, selling AI access on underground markets

🎙️ Catch the latest episode of #CryingOutCloud, where Amitai Cohen and Eden Koby Naftali tackle key cloud security challenges from AI Toolkit Risks to CUPS Vulnerabilities! Tune in to hear about: 📌 Wiz Research discovered a vulnerability affecting the Nvidia container toolkit 📌 Google's novel Info Stealers Mitigations 📌 All the talk around the CUPS vulnerabilities 📌 How to leverage Atomic Cloud IOCs [And so much more...]

📢 Tune in for the special episode of Crying Out Cloud with  @Gitlab 's Julie Davila! 🚀 Join our Co-host Eden Koby Naftali and the cybersecurity leader Julie Davila, VP of Product Security at GitLab as they dive into: 📌 Balancing transparency in open-source tooling with security risks. 📌 Democratizing security: How GitLab empowers engineers to take ownership of security without disrupting their workflow. 📌 Plus, insights into empowering women in cloud security and why diverse representation is crucial for the industry's future.

Discover the latest in cloud security with intriguing stories about a new cryptojacking campaign targeting SeleniumGrid. Learn how a DDoS attack disrupted Starbucks due to a configuration mishap. Dive into the chaos caused by DigiCert's mass certificate revocation, and explore the dangers of trusting popular platforms with security flaws. The podcast wraps up with essential tactics to safeguard cloud environments and the ever-evolving threats presented by ransomware in the VMware ESXi world.

📢 Tune in for an exclusive session with Ryan Kazanciyan on securing a security vendor, hyper-growth, and AI impact in the latest podcast episode of #CryingOutCloud! Join our hosts, Amitai Cohen and Eden Koby Naftali, as they dive into cloud security with Ryan Kazanciyan, our seasoned expert leading security at @Wiz. 🔍 Episode Highlights: 📌 Managing security during hyper growth: challenges and lessons learned. 📌 Ryan's experiences at Mandiant and the impact of the APT1 investigation on his approach to security. 📌 Current security trends and the role of AI in security. 📌 Ensuring safe use of AI tools like ChatGPT within the organization for internal use and product development.

📢 Tune in to our special episode with Hillai Ben-Sasson with all you need to know about #SAPwned. TL;DR - The Wiz Research Team uncovered serious vulnerabilities in SAP AI Core, revealing potential risks in #AI infrastructure.