From Supply Chain Attacks to S3 Ransomware: Critical Cloud Security Stories You Need to Know.

🎙️ In this episode of Crying Out Cloud, Eden and Amitai break down the latest cloud security chaos, from sneaky supply chain attacks to AI-powered malware:1) How attackers exploited a GitHub misconfiguration to enable a supply chain attack.2) The latest twist on cloud-native extortion (spoiler: it all comes back to stolen cloud keys).3) NullifAI – Malicious AI models hiding in plain sight.4) whoAMI attack – The clever AWS AMI name confusion flaw that might catch you off guard.

🎙️ SEASON PREMIERE ALERT: Tune in to our latest episode featuring Karim El-Melhaoui, where we dive into the latest cloud security challenges ☁️🔥 Amitai Cohen & Eden Koby Naftali are kicking off the season with:- Cyber risk vs. operational risk – Why cyber risk is harder to quantify and how Norges Bank used NIST's Cybersecurity Framework to strengthen resilience.- Open-source tools fuel innovation, but many are abandoned without long-term support.- How cloud security alliance Norway is setting stronger security standards.🎧 Ready for season 3 of #CryingOutCloud?

Why is everyone suddenly talking about DeepSeek? 👀 🎙️ If you've been seeing DeepSeek everywhere but are wondering what the actual buzz is about - this is for you: Our new podcast features Gal Nagli from the Wiz Research team, breaking it down with Eden Koby Naftali and Amitai Cohen. Plus: Get the full story behind our recent DeepSeek database discovery that made headlines ⚡

🎙️ Every great story starts with a beer in the Alps... From building #Adallom to becoming a sommelier — hear Roy Reznik's journey as Co-Founder and VP R&D at @wiz in our podcast season finale! In this episode Eden Koby Naftali & Amitai Cohen dive into: ☁️ Roy's journey from Tel Aviv to London—culture. 🛠️ How companies can scale fast while staying secure. 💡 How R&D should foster a culture where developers proactively embrace security as a core value. 🤖 Thoughts on AI in development — Co-Pilots: where do they excel?

🎙️ Unpack AWS re:Invent's top announcements, trends, and what's next for cloud practitioners with @Scott Piper! Join Eden Naftali and Amitai Cohen in our latest #CryingOutCloud episode featuring Scott Piper, Wiz's Principal Cloud Security Researcher and "cloud security historian". In this episode: 🌟 AWS re:Invent highlights: Aurora DSQL, Nova genAI, EKS Auto Mode 🔒 Security updates on RCPs, VPC Block Public Access, Declarative Policies for EC2 🎬 Scott's favorite cloud-themed movies from Wiz Video World (Pulp Encryption, anyone?)

Dive into the latest #CryingOutCloud episode featuring Johann Rehberger!

Join Eden and Amitai as they sit down with Johann Rehberger, Red Team Director at @electronicarts and a cybersecurity expert. Johann also publishes innovative security research on his blog, Embrace the Red.

What you'll learn:

📌 Red teaming strategies to strengthen security programs

📌 Insights from Johann’s cutting-edge AI security research and experience

📌 The funny story behind Johann’s alias, Wunderwuzzi

Tune in now! 🎧

🎙️ Tune in to the latest #CryingOutCloud episode featuring Tanya Janca, where we dive into all things cloud! Join Eden and Amitai as they welcome Tanya Janca, founder of 'We Hack Purple', and the author of 'Alice and Bob Learn Application Security'. She's seen it all—from launching AppSec programs to teaching secure coding and leading on education at Semgrep. In this episode: 🌐 Building security programs from scratch 🔍 The value of static analysis tools for developers 🇨🇦 The Canadian cybersecurity landscape and her take on global challenges 💡 Tips for securing AI applications in the age of generative AI

🎙️ Ready for the latest on Hybrid Cloud Attacks, Linux Malware, and LLMJacking? Join our hosts Eden Koby Naftali and Amitai Cohen in our NEW #CryingOutCloud episode. In this episode: 📌 The perfctl malware campaign—stealthily mining crypto on thousands of Linux machines undetected for years 📌 Storm-0501 hybrid cloud attacks, targeting everything from hospitals to law enforcement, with ransomware and stolen admin credentials 📌 LLMJacking—the latest evolution in malicious cloud access, selling AI access on underground markets