Wiz Issues alerts

wiz

Classification:

attack

Goal

Detect threat detection alerts generated by Wiz webhooks.

Strategy

This rule detects webhooks alerts that have been generated by Wiz.

Triage and response

  1. Investigate the entity {{@resource.id}} with alert {{@control.name}}.
  2. Take necessary and appropriate actions based on the company procedures.

Changelog

  • 28 October 2025 - Updated rule query to include informational severity cases for third party alerts.