惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

P
Palo Alto Networks Blog
S
Security Affairs
T
Tor Project blog
T
Threatpost
Hacker News - Newest:
Hacker News - Newest: "LLM"
C
Cyber Attacks, Cyber Crime and Cyber Security
The Hacker News
The Hacker News
A
Arctic Wolf
K
Kaspersky official blog
O
OpenAI News
Spread Privacy
Spread Privacy
人人都是产品经理
人人都是产品经理
爱范儿
爱范儿
Simon Willison's Weblog
Simon Willison's Weblog
雷峰网
雷峰网
P
Privacy & Cybersecurity Law Blog
Know Your Adversary
Know Your Adversary
奇客Solidot–传递最新科技情报
奇客Solidot–传递最新科技情报
Last Week in AI
Last Week in AI
Martin Fowler
Martin Fowler
量子位
博客园_首页
Cyberwarzone
Cyberwarzone
博客园 - 三生石上(FineUI控件)
Exploit-DB.com RSS Feed
Exploit-DB.com RSS Feed
IT之家
IT之家
N
News and Events Feed by Topic
博客园 - 司徒正美
V2EX - 技术
V2EX - 技术
S
Schneier on Security
博客园 - 叶小钗
Attack and Defense Labs
Attack and Defense Labs
AI
AI
Application and Cybersecurity Blog
Application and Cybersecurity Blog
博客园 - 【当耐特】
Jina AI
Jina AI
C
CXSECURITY Database RSS Feed - CXSecurity.com
C
Cybersecurity and Infrastructure Security Agency CISA
D
Darknet – Hacking Tools, Hacker News & Cyber Security
cs.CL updates on arXiv.org
cs.CL updates on arXiv.org
freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More
大猫的无限游戏
大猫的无限游戏
Cloudbric
Cloudbric
H
Hacker News: Front Page
The Last Watchdog
The Last Watchdog
V
V2EX
S
SegmentFault 最新的问题
V
Visual Studio Blog
PCI Perspectives
PCI Perspectives
Microsoft Security Blog
Microsoft Security Blog

Wiz Blog | RSS feed

Meet Wiz for M365: Bringing SaaS into the Security Graph Bringing Security Visibility to Vercel with Wiz Axios NPM Distribution Compromised in Supply Chain Attack Tracking TeamPCP: Investigating Post-Compromise Attacks Seen in the Wild The Wiz Blue Agent, now Generally Available Beyond the Badge: What Achieving Microsoft’s Certified Software Designation Means for Your Cloud Security Introducing the Green Agent: AI-Powered Remediation for the Cloud Three’s a Crowd: TeamPCP trojanizes LiteLLM in Continuation of Campaign KICS GitHub Action Compromised: TeamPCP Strikes Again in Supply Chain Attack Introducing Wiz AI Application Protection Platform (AI-APP) Introducing Wiz Agents & Workflows: Security at the Speed of AI AI Runtime Threat Detection: From Input to Real-World Impact Trivy Compromised: Everything You Need to Know about the Latest Supply Chain Attack It’s Official: Wiz Joins Google Understanding and Reducing AI Risk in Modern Applications Introducing Wiz Tenant Manager: Multi-Tenant Management for Federated Organizations The Agile FedRAMP Playbook, Part 4: Reactive Risk Management through Enriched Incident Response Wiz Achieves CPSTIC Certification in Spain Seeing AI Clearly: Building Visibility Across Modern AI Applications The Agile FedRAMP Playbook, Part 3: Preventative Risk Management by building Secure by Design Wiz Leads the 2026 Latio Application Security Report with awards in 4 categories Building an Agentic Cloud Security Ecosystem: A Reference Architecture with Wiz MCP and Infosys Cyber Next The Agile FedRAMP Playbook, Part 2: Proactive Risk Management with Continuous Monitoring Cloud-native Security for your Windows environment: Announcing the Wiz Runtime Sensor for Windows Would You Click ‘Accept’? Automatically detecting malicious Azure OAuth applications using LLMs Wiz Named a Leader in The Forrester Wave™: Cloud Native Application Protection Solutions, Q1 2026 From Detection to Remediation: It’s Time to Rethink AppSec Around Exploitability and Root Cause Fixes The Agile FedRAMP Playbook, Part 1: Why Risk is Your Best Starting Point Introducing AI Cyber Model Arena: A Real-World Benchmark for AI Agents in Cybersecurity Wiz + Spotify Backstage: Security at the Developer’s Desk Building AI Security Together: New Ways to Partner with Wiz for AI Security in 2026 Hacking Moltbook: The AI Social Network Any Human Can Control The Year in Wiz Research: 2025 Most Read Blogs WizExtend is Here: AI and Cloud Security Insights in Your Daily Workflow From Detection to Remediation: Wiz in Your JetBrains IDE Agentic Browser Security: 2025 Year-End Review CodeBreach: Infiltrating the AWS Console Supply Chain and Hijacking AWS GitHub Repositories via CodeBuild A 90-Day Action Plan to Turn Resolutions into Results with Wiz Introducing the Wiz Partner Alliance: A New Chapter for Partner Success Preparing for Post-Quantum Cryptography Wiz Recognized as a 2025 Customers’ Choice in the Gartner® Peer Insights™ Voice of the Customer for CNAPP Expanding the Zero Critical Club to set a new standard for AppSec and SecOps teams Snipping the Long Tail of Shai-Hulud 2.0 Protecting Against Zero-Day Vulnerabilities with SOC-Level ASM Alert MongoBleed (CVE-2025-14847) exploited in the wild: everything you need to know The Kenna Transition: Your Strategic Shift to Exposure Management From MCP to Vibe Coding: Full Endpoint Visibility in Wiz AI Security Bringing Oracle Cloud Identity to Wiz Zero‑Days in the Age of AI: Behind the Scenes of ZeroDay.cloud 2025, with a Record High of CVEs in Critical Cloud Infra Gogs 0-Day Exploited in the Wild Code to Cloud Attacks: From Github PAT to Cloud Control Plane Top AWS re:Invent Announcements for Security Teams in 2025 React2Shell: Technical Deep-Dive & In-the-Wild Exploitation of CVE-2025-55182 React2Shell (CVE-2025-55182): Everything You Need to Know About the Critical React Vulnerability Wiz Product Announcements at re:Invent 2025: Expanding Visibility from Code to Cloud Introducing Wiz SAST: Where Code Risk Meets Cloud Context Wiz Becomes Fastest Security ISV to Reach $1 Billion in AWS Marketplace Lifetime Sales It's Here! Wiz Exposure Management is Now GA Shai-Hulud 2.0 Aftermath: Trends, Victimology and Impact Service Catalog is Here: Expand Risk Visibility for Your Service and Its Dependencies, Simplify Issue Ownership WizOS: Powering Secured Image Adoption with AI 3 OAuth TTPs Seen This Month — and How to Detect Them with Entra ID Logs Mastering Software Governance with Hosted Technologies Inventory Shai-Hulud 2.0 Supply Chain Attack: 25K+ Repos Exposing Secrets Get Certified on Wiz Defend for Threat Detection and Response Blueprint for Security: A Guide to Code, Governance, and Response Frameworks Google Unified Security Recommended Program Names Wiz Among First 3 Strategic Partners Introducing Posture Issues: Transform Security Findings into Actionable Outcomes Empower and Accelerate Your SOC with the Blue Agent Exposure Report: 65% of Leading AI Companies Found with Verified Secret Leaks Wizdom 2025 Product Announcements: Extending the Cloud Operating Model When AI Becomes the Heart of Security: Powering a Future You Can Trust AI-Powered Wiz: From Agents to Everyday Intelligence Defend Agentless Workload Detection: Bringing Visibility to Blind Spots in Threat Detection Securing AI Agents with Wiz AI-SPM Introducing Wiz ASM: Context-Driven Attack Surface Management Securing Critical Infrastructure in the Cloud Era: A Policy and Technology Blueprint How CISOs Should Plan Security Budgets for 2026 Beyond the Checkbox: How Wiz Transforms SOC 2 into a Security Powerhouse Bringing Visibility to Kubernetes: Unified Inventory and Network Insight The Foundation Modern AppSec Is Still Missing: Code to Cloud, Rebuilt the Right Way Dismantling a Critical Supply Chain Risk in VSCode Extension Marketplaces Introducing HoneyBee: How We Automate Honeypot Deployment for Threat Research RediShell: Critical Remote Code Execution Vulnerability (CVE-2025-49844) in Redis, 10 CVSS score Defending against database ransomware attacks AI Security 101: Mapping the AI Attack Surface Introducing zeroday.cloud: First-of-its-kind cloud and AI hacking competition Unifying Cloud Risk and Network Defense: Wiz and Check Point The emerging use of malware invoking AI Wiz achieves FedRAMP High authorization Wiz + HCP Terraform: Close the IaC-to-Cloud Infrastructure Security Gap IMDS Abused: Hunting Rare Behaviors to Uncover Exploits Beyond CVEs: The Exploitation of Everyday Misconfigurations Wiz Research Discovers One in Five Organizations Exposed to Systemic Risks in Vibe-Coded Applications - Here's How to Secure Them Introducing Wiz Incident Response: Your Expert Partner for Cloud Security Incidents Shai-Hulud: Ongoing Package Supply Chain Worm Delivering Data-Stealing Malware DORA Compliance in the Cloud Era: Insights from Deloitte and Wiz How Wiz Customers like Brex and FICO See AI Changing Security Wiz Recognized as a Leader in the 2025 IDC MarketScape for ASPM Widespread npm Supply Chain Attack: Breaking Down Impact & Scope Across Debug, Chalk, and Beyond
Introducing the Wiz Red Agent- AI-Powered Attacker
Gal Nagli, Mika Maymon, Guy Goldenberg, Bar Vaserman, Danielle A · 2026-03-24 · via Wiz Blog | RSS feed

Update (April 22, 2026): We are excited to announce that the Red Agent is now in Public Preview.

At RSA 2026, we announced the launch of the Wiz Red Agent- reimagining how organizations secure the modern attack surface. The Red Agent is our new AI-powered intelligent attacker that enables you to discover and fix complex logic-driven vulnerabilities in proprietary APIs and AI-generated code- that were out of reach before the advancements in frontier AI models. It does so by leveraging AI-powered exploitation that reasons about application behavior, adapts its approach in real time, and validates exploitable risks across your web applications and APIs, empowering you to stay one step ahead of attackers.

In early testing with design partners, Red Agent has already identified critical vulnerabilities that remained undetected despite extensive manual research, penetration testing, and active bug bounty programs:

Red Agent finds what humans miss. It caught critical authorization flaws across services where traditional testing and our bug bounty program came up short. We had continuous AI-powered attack surface testing on our roadmap. Wiz got there first, and did it better than we would have.

Emil Vaagland, Head of Product Security, Vend

Was this discovered entirely by AI? So far, I've seen very mediocre reports from AI tools, so if this was an AI find, I'd be super impressed.

Private Bug Bounty Program Manager on HackerOne's platform

Why we created the Red Agent

The attack surface has changed as organizations ship code faster than ever. Teams are building AI-generated apps and custom APIs at a pace that exceeds security reviews, often leaving them publicly exposed. Attackers are capitalizing on this speed, targeting logic flaws in custom applications that go far beyond known exploits.

These types of logic flaws are impossible to find with traditional scanning approaches, as typically they rely on fixed patterns and signatures and therefore cannot reason with custom application logic. This has created a widening gap between what defenders can test and what attackers can find within the custom-built, rapidly deployed software in today’s external attack surface.

We built the Red Agent to close that gap- bringing what was only possible through manual security research into something that runs autonomously, continuously, and at scale with the power of AI.

Get to know the Red Agent: What makes it different

Now in Public Preview as part of Wiz Attack Surface Management (ASM), the Red Agent acts as an autonomous, world-class security researcher designed to uncover complex vulnerabilities. It does so by combining three unique advantages:

  • Deep Cloud context - The Red Agent's attack scope is built from assets discovered through agentless disk analysis, cloud configuration analysis, runtime data based on the Wiz Sensor, and exposed API specifications- covering services that belong to your organization that other tools don’t have visibility into. Being a part of the Wiz platform, it doesn’t just understand the application layer, but also the cloud infrastructure behind it- which services are internet-facing, what infra they run on, and how an API vulnerability connects to a broader lateral movement path in the cloud. This context allows you to truly understand impact and prioritize:

  • World-class attacker expertise - The Red Agent's reasoning engine was built by Wiz's Research team - security researchers with deep expertise in uncovering major vulnerabilities across AI systems, enterprise environments, critical infrastructure, and widely-used open source projects. That expertise is encoded directly into how the agent reasons about targets.

  • Adaptive, reasoning-based exploitation - Rather than using static lists to send predetermined payloads, the Red Agent analyzes API specifications to understand what each endpoint does, reasons about how it could be exploited, and dynamically adapts based on what it observes. It chains multi-step attack sequences the way a skilled pentester would - and when it finds something, it validates it with concrete proof.

How the Red Agent works

The Red Agent combines two new AI-powered components - an intelligent web crawler for discovery and an AI-powered attacker engine for exploitation. This is how the Red Agent uncovers exploitable risk:

  1. Discover: The Red Agent maps your full API attack surface by aggregating endpoints from Cloud APIs, Swagger and OpenAPI documentation, the Wiz Runtime Sensor, and its own AI-powered web crawler. The crawler analyzes client-side code to uncover shadow APIs, forgotten test services, and undocumented endpoints that aren't visible through traditional scanning.

  2. AI-powered exploitation: Red Agent performs safe, context-aware, and intelligent exploitation to uncover complex risks. For each targeted host, it analyzes API specifications to understand expected behavior and parameters, reasons about application logic to identify potential vulnerabilities, and dynamically adapts its attack patterns based on observed responses - chaining multi-step exploits to uncover complex risks that signature-based tools miss. This enables the Red Agent to find vulnerability classes that traditional scanners structurally cannot detect - from OWASP API Top 10 issues like broken authorization and improper authentication, to business logic flaws, injection vulnerabilities, and multi-step attack chains in custom and AI-generated applications.

  3. Prioritize: Red Agent High and Critical findings generate Wiz Issues that have validated impact and the risk is proven to be exploitable from the outside, so teams can prioritize them immediately. Findings are correlated with context from the Wiz Security Graph- connecting application-layer risks to cloud infrastructure, identity, data and lateral movement paths - to help you prioritize with context. 

  4. Remediate: You can leverage the Green Agent to accelerate remediation and easily identify the right owner and get remediation guidance to assign and fix fast. The Green Agent synthesizes context from across Wiz - including the Security Graph, code-to-cloud relationships, identity ownership, and historical remediation patterns - to identify the true root cause of a risk and the safest, most effective resolution.

Real World Impact

Over the past months, we ran the Red Agent against production environments that had already been battle-tested for years by security vendors, bug bounty programs, and penetration testing teams. Even with these defenses in place, Red Agent identified hundreds of critical, exploitable risks that had remained unseen. In this blog, we will cover one example of such real-world impact, and will cover more deep dives in an upcoming Red Agent blog series.

Red Agent's first 0-day discovery - Authentication bypass on a popular SaaS community platform

The Red Agent discovered an authentication bypass on a community platform configured to restrict all access to logged-in members only- uncovering access to thousands of member records, internal discussions, employee identities, and downloadable file attachments. Here's how it reasoned through the attack:

  • Leveraging the AI-powered web crawler, the Red Agent first crawled the application's public login page, and identified a significant amount of client-side code in public JavaScript files. It analyzed this logic to discover valuable API endpoints and gain significant application context.

  • It then probed internal headless API endpoints without credentials- receiving a 401 Unauthorized error indicating that a "Tenant ID" was required to authenticate.

  • The Red Agent then extracted a tenant UUID from the public login page HTML and identified a custom x-tn-id authentication header in the platform's client-side JavaScript

  • It then tested using the leaked UUID as the x-tn-id header to bypass authentication on /api/internal/headless/members - and it worked, returning the full member list.

  • It then also confirmed that the bypass extended across additional endpoints, successfully querying for posts, comments, and file attachments which should have been gated.

  • Finally, it validated tenant isolation to determine if the exploit allowed for universal access, and assessed the full blast radius -confirming unauthorized access to thousands of member records with PII, internal discussions, employee identities, and the full customer base of the login-gated community.

This kind of attack chain is impossible to discover leveraging traditional scanning - and would be easy to miss even for a world-class pentester. It requires probing internal nested APIs, extracting a credential from a separate page, connecting it to a custom authentication header, and assembling a full bypass from what it learned. The Red Agent did all of this in a single scan - and all it took was 5 minutes.

Another example: authentication bypass and full database exfiltration via an AI chatbot

Here, the Red Agent discovered a critical multi-step attack chain on a vibe-coded publicly facing AI Chatbot that was never intended to be exposed:

  • Authentication Bypass: The agent identified that the server accepted dummy "Bearer" tokens without validation, granting it access to the chatbot’s internal tools.

  • Schema Mapping: Using the chatbot’s own messaging tool, the agent prompted the AI to enumerate database tables and extract sensitive data- proving the complete trust boundary was based on an authentication flow that was inherently misconfigured.

  • Full Exfiltration: The Red Agent successfully extracted live PII (names, addresses) and proprietary sensitive company information by simply asking the AI to retrieve them.

The Red Agent doesn't just find isolated vulnerabilities- it understands how they correlate to your environment context on the Wiz Security Graph. This context includes the internet-facing application endpoint, underlying EC2 instance, IAM role, and the RDS PostgreSQL database with the sensitive data. This gives you the full picture of the blast radius- from initial entry point to the data that's actually at risk-, enabling you to truly prioritize based on the impact to your business.

Looking ahead: The role of AI-powered attacker in modern Attack Surface Management

The Red Agent extends Wiz ASM from scanning for known exploits such as CVEs, public exploits, and common misconfigurations to discovering vulnerabilities no public exploit or static signature will be able to find- authentication bypasses, business logic flaws, prompt injection, and multi-step attack chains in custom applications and APIs. 

Together, ASM and the Red Agent provide complete attack surface risk assessment, from known exploits to unknown logic flaws. Looking ahead, APIs are the first step for the Red Agent, and we are actively working on extending the Red Agent to use cases we never thought could be fully automated and cover every dimension of the attack surface. 

Get started now

Attackers have always had the advantage of creativity and persistence. With the Red Agent, defenders get both- and continuously, across their entire attack surface, fueled by proprietary context. Get started now with the Red Agent. It is available now in Public Preview as part of Wiz Attack Surface Management. Interested in seeing the Red Agent in action? book a live demo with our team.