The Rapid7 Blog:
Your Signal in the Security Noise

Insights, stories, and guidance from our global security and research teams.

Weekly security updates — no spam. Privacy Policy.

Featured posts

Introducing Rapid7 MDR for Microsoft

Introducing Rapid7 MDR for Microsoft

Read post
The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit

The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit

Read post
What’s New in Rapid7 Products & Services?

What’s New in Rapid7 Products & Services?

Read post
Navigating AWS Migration: Achieving Clarity and Confidence

Cloud and Devops Security

Navigating AWS Migration: Achieving Clarity and Confidence

Tim Schmidt's avatar

Tim Schmidt

Rapid7 Q1 2025 Incident Response Findings

Detection and Response

Rapid7 Q1 2025 Incident Response Findings

Chris Boyd's avatar

Chris Boyd

From Ideology to Financial Gain: Exploring the Convergence from Hacktivism to Cybercrime

Threat Research

From Ideology to Financial Gain: Exploring the Convergence from Hacktivism to Cybercrime

Alexandra Blia's avatar
Yaniv Allender's avatar

Alexandra Blia, Yaniv Allender

Introducing AI Attack Coverage in Exposure Command: Secure what traditional AppSec Tools miss

Security Operations

Introducing AI Attack Coverage in Exposure Command: Secure what traditional AppSec Tools miss

Michael Chroney's avatar

Michael Chroney

Key Takeaways from the Take Command Summit 2025: Risk Revolution – Proactive Strategies for Exposure Management

Industry Trends

Key Takeaways from the Take Command Summit 2025: Risk Revolution – Proactive Strategies for Exposure Management

Rapid7's avatar

Rapid7

Metasploit Wrap-Up 05/30/2025

Exposure Management

Metasploit Wrap-Up 05/30/2025

Spencer McIntyre's avatar

Spencer McIntyre

Seeing Is Securing: How Surface Command Expands MDR Visibility and Impact

Products and Tools

Seeing Is Securing: How Surface Command Expands MDR Visibility and Impact

Conner Goldstein's avatar

Conner Goldstein

CVE-2025-48045, CVE-2025-48046, CVE-2025-48047: MICI NetFax Server Product Vulnerabilities (NOT FIXED)

Vulnerabilities and Exploits

CVE-2025-48045, CVE-2025-48046, CVE-2025-48047: MICI NetFax Server Product Vulnerabilities (NOT FIXED)

Anna Katarina Quinn's avatar

Anna Katarina Quinn

Key Takeaways from the Take Command Summit 2025: Customer Panel on Future-Proofing VM Programs

Industry Trends

Key Takeaways from the Take Command Summit 2025: Customer Panel on Future-Proofing VM Programs

Rapid7's avatar

Rapid7

Retail Under Siege: What Recent Cyber Attacks Tell Us About Today’s Threat Landscape

Detection and Response

Retail Under Siege: What Recent Cyber Attacks Tell Us About Today’s Threat Landscape

Emma Burdett's avatar

Emma Burdett

Threats don’t wait, neither should you: Mastering Emergent Threat Response Validation

Products and Tools

Threats don’t wait, neither should you: Mastering Emergent Threat Response Validation

Ed Montgomery's avatar

Ed Montgomery

Metasploit Wrap-Up

Exposure Management

Metasploit Wrap-Up

Martin Sutovsky's avatar

Martin Sutovsky

What the Take Command 2025 Survey Tells Us About the State of Security

Rapid7 Blog

What the Take Command 2025 Survey Tells Us About the State of Security

Rapid7's avatar

Rapid7

NSIS Abuse and sRDI Shellcode: Anatomy of the Winos 4.0 Campaign

Vulnerabilities and Exploits

NSIS Abuse and sRDI Shellcode: Anatomy of the Winos 4.0 Campaign

Anna Širokova's avatar
Ivan Feigl's avatar

Anna Širokova, Ivan Feigl

Key Takeaways from the Take Command Summit 2025: Inside the Mind of an Attacker

Detection and Response

Key Takeaways from the Take Command Summit 2025: Inside the Mind of an Attacker

Rapid7's avatar

Rapid7

Metasploit Wrap-Up 05/16/2025

Products and Tools

Metasploit Wrap-Up 05/16/2025

Spencer McIntyre's avatar

Spencer McIntyre

Ivanti Endpoint Manager Mobile exploit chain exploited in the wild

Products and Tools

Ivanti Endpoint Manager Mobile exploit chain exploited in the wild

Ryan Emmons's avatar

Ryan Emmons

CVE-2025-32756 Exploited in the Wild, Affecting Multiple Fortinet Products

Products and Tools

CVE-2025-32756 Exploited in the Wild, Affecting Multiple Fortinet Products

Stephen Fewer's avatar

Stephen Fewer

Patch Tuesday - May 2025

Exposure Management

Patch Tuesday - May 2025

Adam Barnett's avatar

Adam Barnett

Vendor-Agnostic Security: The Key To Smarter Risk Management

Rapid7 Blog

Vendor-Agnostic Security: The Key To Smarter Risk Management

Michael Chroney's avatar

Michael Chroney

Recognizing Excellence: Rapid7’s Kelly Hiscoe and Heather DeMartini Honored as CRN’s 2025 Women of the Channel

Culture

Recognizing Excellence: Rapid7’s Kelly Hiscoe and Heather DeMartini Honored as CRN’s 2025 Women of the Channel

Rapid7's avatar

Rapid7