	US 12,273,358 B2
	System and method for detecting lateral movement using cloud access keys
Avi Tal Lichtenstein, Tel Aviv (IL); Ami Luttwak, Binyamina (IL); and Daniel Hershko Shemesh, Givat-Shmuel (IL)
Assigned to Wiz, Inc., New York, NY (US)
Filed by Wiz, Inc., New York, NY (US)
Filed on Sep. 18, 2024, as Appl. No. 18/888,955.
Application 18/888,955 is a continuation of application No. 18/887,807, filed on Sep. 17, 2024.
Application 18/887,807 is a continuation of application No. 18/617,210, filed on Mar. 26, 2024.
Application 18/617,210 is a continuation of application No. 18/474,974, filed on Sep. 26, 2023.
Application 18/474,974 is a continuation of application No. 17/657,494, filed on Mar. 31, 2022, granted, now 11,811,787, issued on Nov. 7, 2023.
Claims priority of provisional application 63/170,125, filed on Apr. 2, 2021.
Prior Publication US 2025/0016176 A1, Jan. 9, 2025
This patent is subject to a terminal disclaimer.
Int. Cl. H04L 9/40 (2022.01)

CPC H04L 63/14 (2013.01)

27 Claims

1. A method for detecting impact of a potential lateral movement in a computing environment, comprising:

generating in a security database a representation of a computing environment, the computing environment including a plurality of entities;

detecting a first node in the security database, the first node representing a compromised entity of the plurality of entities;

detecting in the security database a credential node connected to the first node, wherein the credential node represents a credential utilized by the entity in the computing environment;

generating a potential lateral movement path including: the first node, and a second node representing a second entity of the plurality of entities, wherein the second node is further connected to the credential node;

generating a lateral movement impact based on the potential lateral movement path; and

generating a visual graph based at least on the generated lateral movement impact.