The Rapid7 Blog:
Your Signal in the Security Noise

Insights, stories, and guidance from our global security and research teams.

Weekly security updates — no spam. Privacy Policy.

Featured posts

Introducing Rapid7 MDR for Microsoft

Introducing Rapid7 MDR for Microsoft

Read post
The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit

The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit

Read post
What’s New in Rapid7 Products & Services?

What’s New in Rapid7 Products & Services?

Read post
Prepare for Battle: Let’s Build an Incident Response Plan (Part 2)

Detection and Response

Prepare for Battle: Let’s Build an Incident Response Plan (Part 2)

Eric Sun's avatar

Eric Sun

Standing with Massachusetts technology leaders in support of net neutrality

Industry Trends

Standing with Massachusetts technology leaders in support of net neutrality

Corey Thomas's avatar

Corey Thomas

2017 Gartner Magic Quadrant for SIEM: Rapid7 Named a Visionary

Detection and Response

2017 Gartner Magic Quadrant for SIEM: Rapid7 Named a Visionary

Eric Sun's avatar

Eric Sun

CVE-2017-10151: What You Need to Know About the Oracle Identity Manager Vulnerability

Products and Tools

CVE-2017-10151: What You Need to Know About the Oracle Identity Manager Vulnerability

Matthew Ferguson's avatar

Matthew Ferguson

GDPR Compliance Checklist: December – Assess & Review

Exposure Management

GDPR Compliance Checklist: December – Assess & Review

Sam Humphries's avatar

Sam Humphries

Metasploit Wrapup: Dec. 1, 2017

Products and Tools

Metasploit Wrapup: Dec. 1, 2017

Brendan Watters's avatar

Brendan Watters

Prepare for Battle: Let’s Build an Incident Response Plan (Part 1)

Detection and Response

Prepare for Battle: Let’s Build an Incident Response Plan (Part 1)

Eric Sun's avatar

Eric Sun

Announcing the Metasploitable3 Community CTF

Products and Tools

Announcing the Metasploitable3 Community CTF

Caitlin Condon's avatar

Caitlin Condon

InsightAppSec Feature Highlights: On-Premise Engines, JIRA Integration, and More

Products and Tools

InsightAppSec Feature Highlights: On-Premise Engines, JIRA Integration, and More

Alfred Chung's avatar

Alfred Chung

CVE-2017-16943: Exim BDAT Use-After-Free

Rapid7 Blog

CVE-2017-16943: Exim BDAT Use-After-Free

Tod Beardsley's avatar

Tod Beardsley

InsightIDR Monitors Win, Linux & Mac Endpoints

Detection and Response

InsightIDR Monitors Win, Linux & Mac Endpoints

Eric Sun's avatar

Eric Sun

Firewall Reporting Excessive SYN Packets? Check Rate of Connections

Detection and Response

Firewall Reporting Excessive SYN Packets? Check Rate of Connections

Rapid7's avatar

Rapid7

3 Steps to Building an Effective Log Management Policy

Security Operations

3 Steps to Building an Effective Log Management Policy

Robert Reselman's avatar

Robert Reselman

INTEL-SA-00086 Security Bulletin for Intel Management Engine (ME) and Advanced Management Technology (AMT) Vulnerabilities: What You Need To Know

Exposure Management

INTEL-SA-00086 Security Bulletin for Intel Management Engine (ME) and Advanced Management Technology (AMT) Vulnerabilities: What You Need To Know

boB Rudis's avatar

boB Rudis

The Oracle (PeopleSoft/Tuxedo) JoltandBleed Vulnerabilities: What You Need To Know

Exposure Management

The Oracle (PeopleSoft/Tuxedo) JoltandBleed Vulnerabilities: What You Need To Know

boB Rudis's avatar

boB Rudis

Metasploit Wrapup: Nov. 17, 2017

Products and Tools

Metasploit Wrapup: Nov. 17, 2017

Pearce Barry's avatar

Pearce Barry

Welcome transparency on US government's process for disclosing vulnerabilities

Industry Trends

Welcome transparency on US government's process for disclosing vulnerabilities

Harley Geiger's avatar

Harley Geiger

Deploying CSP Properly

Rapid7 Blog

Deploying CSP Properly

Rapid7's avatar

Rapid7

Simplicity, Harmony, and Opportunity: Rapid7 Threat Report Q3 2017

Threat Research

Simplicity, Harmony, and Opportunity: Rapid7 Threat Report Q3 2017

Rebekah Brown's avatar

Rebekah Brown

Patch Tuesday - November 2017

Exposure Management

Patch Tuesday - November 2017

Greg Wiseman's avatar

Greg Wiseman

Takeaways from 2017 SANS State of Application Security Survey

Security Operations

Takeaways from 2017 SANS State of Application Security Survey

Alfred Chung's avatar

Alfred Chung