Tens of billions of dollars a year are spent on information technology (IT) security, and this amount continues to grow.
For the 3rd Consecutive year, Rapid7 rates "Strong positive" - the highest possible rating. Find out how Vulnerability Assessment solutions can benefit you and why Gartner gives Rapid7 Nexpose top marks.
More Analyst Reports
Negative media coverage, a loss of customer confidence, and the resulting loss in sales can cripple a business. As a result, all entities that handle credit cardholder information are being challenged to adopt more effective data protection measures. The Payment Card Industry (PCI) Data Security Standard (DSS) was created to confront the rising threat to credit cardholder personal information. This compliance guide will provide readers with an overview of the requirements as well as suggested steps in achieving PCI compliance.
When private medical records are breached, healthcare service providers suffer damage to their brand, reputation, loss of trust from their patients, and severe financial repercussions. The Health Insurance Portability and Accountability Act of 1996 (HIPAA) mandates that appropriate administrative, technical, and physical safeguards be used to protect the privacy and security of sensitive health information. This compliance guide will provide readers with an overview of the requirements as well as suggested steps in achieving HIPAA compliance.
More Compliance Guides
Read our case study about Apptio, a rapidly growing technology company. See how Apptio uses Mobilisafe to manage the risks these mobile devices bring to the company.
Rapid7 Metasploit Changes the Security Mindset at AutomationDirect.com
More Customer Stories
Justin Kennedy, Principal Security Consultant at Integralis, explains why Integralis chose Rapid7's Nexpose and Metasploit for their security needs. Integralis has been a Rapid7 customer since 2009, and they made the choice to use Rapid7 thanks to outstanding customer support and engagement, as well as robust product features that help him do his job more easily and efficiently. For example, Justin cites Metasploit's social engineering capabilities as a feature that puts Rapid7 ahead of the pack.
More Customer Testimonials
With BYOD growing, it is important to understand the risks involved with the bring your own device trend. Check out this infographic to learn more about BYOD and mobile security.
Rapid7 analyzed the details of 453,492 breached Yahoo! records and found that the majority of the published passwords were only "poor" or "weak" in strength due to a number of basic password security errors. In addition, over 100,000 Gmail accounts and thousands of Hotmail and AOL accounts may also have been compromised if users had reused their passwords across accounts. This infographic details other key findings from the analysis.
More Infographics
In this product brief learn how Mobilisafe's key features and approach make it the ideal mobile security solution for BYOD. Detailed descriptions of Mobilisafe's key features and design architecture are included.
This data sheet provides a general overview of Rapid7 Nexpose. It describes the product's core functionality and explores how Rapid7 customers leverage Nexpose to conduct unified vunerability management.
More Product Briefs
Read this review of Rapid7 Nexpose to understand why Peter Stephenson of SC Magazine said the product "is a feature-packed vulnerability assessment and risk analysis tool that always goes beyond expectations.
West Coast Labs engineers set up a test network with multiple operating systems running at different patch levels,with each of these machines having many security flaws and vulnerabilities in order to replicate the heterogeneous nature of many corporate networks. Read their report to understand how Rapid7 Nexpose was tested and how it succeeded in achieving the Check Mark Certification.
More Product Reviews
Aggregated views across an organization help quickly assess the number of mobile users, devices, operating systems and their configurations. In this video, see how this information is presented via the Mobilisafe dashboard.
Mobilisafe issues a simplified risk analysis of each device in the form of a TrustScore. In this video, see how the TrustScore is determined for two specific devices.
More Product Tutorials
This whitepaper details research conducted by Rapid7, which reveals that around 40-50 million network-enabled devices are at risk due to vulnerabilities found in the Universal Plug and Play (UPnP) protocol. UPnP enables devices such as routers, printers, network-attached storage (NAS), media players and smart TVs to communicate with each other. The paper investigates how three groups of security flaws relating to the UPnP protocol are exposing millions of users to attacks that could lead to a remote compromise of the vulnerable device.
Rapid7, the leading provider of security risk intelligence solutions, analyzed data collected and categorized by the Privacy Rights Clearinghouse Chronology of Data Breaches. Using this data, the company outlined patterns for government data breaches, including year, month, location and breach type patterns. This information and tips for protecting infrastructure can ensure that government IT environments stay protected against malicious attacks and unintended disclosure.
More Research Reports
More than 80% of companies are already experiencing the Bring Your Own Device (BYOD) trend, and further growth is expected over the next few years. But, fewer than half of all companies are actually doing something about the security risks that BYOD brings. In this Rapid7 webcast, Rapid7's VP/GM of Mobile, Giri Sreenivas, will provide examples and explain the severity of recent mobile exploits, and outline a simple yet highly effective three-step process to manage a company's mobile risks.
The 2012 Verizon Data Breach Investigations Report quantified the sharp increase in cyber threats, noting that 68% were due to malware, up 20% from 2011. What is most concerning is that 85% of breaches took weeks or more to discover. Despite the focus on threat prevention, breaches will happen. In this environment the ability to identify risk, protect vulnerable assets and manage threats become critical. Register today and learn how these combined solutions can help your organization identify behavioral anomalies, internal and external threats, and prevent breaches based on accurate enterprise security intelligence.
More Webcasts
In today's Whiteboard Wednesday, Chris Kirsch explains what Metasploit is and how you can use this penetration testing software to protect your network. Chris will dive into each edition and explain what each has to offer. You will also learn how to install Metasploit and get up and running quickly. What is Metasploit? Let Chris tell you!
In today's Whiteboard Wednesday, John Schimelpfenig talks about social media security best practices. With the recent AP and Livingsocial hacks in April we thought that this would be a timely topic.
More Whiteboard Wednesday
It seems like we've been hearing a lot about phishing in the news in recent years, and this threat hasn't abated yet. Why are attacks via phishing -and social engineering in general -so prevalent and so effective? This whitepaper examines the many different methods employed in phishing attacks and social engineering campaigns, and offers a solution-based approach to mitigating risk from these attack vectors.
As fast as organizations move, IT security needs to move even faster. There are constant pressures to streamline operations and safeguard valuable assets while keeping up with a deluge of new technologies and maintaining usability for employees, partners, vendors, investors, and more. The critical capability to balance this need for speed with demand for security is visibility.
More White Papers
