The Rapid7 Blog:
Your Signal in the Security Noise

Insights, stories, and guidance from our global security and research teams.

Weekly security updates — no spam. Privacy Policy.

Featured posts

Introducing Rapid7 MDR for Microsoft

Introducing Rapid7 MDR for Microsoft

Read post
The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit

The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit

Read post
What’s New in Rapid7 Products & Services?

What’s New in Rapid7 Products & Services?

Read post
10 Steps Towards the Path of Better Security for Your Business

Security Operations

10 Steps Towards the Path of Better Security for Your Business

Rapid7's avatar

Rapid7

Petya-like Ransomware Explained

Detection and Response

Petya-like Ransomware Explained

Tod Beardsley's avatar

Tod Beardsley

R7-2017-06 | CVE-2017-5241: Biscom SFT XSS (FIXED)

Vulnerabilities and Exploits

R7-2017-06 | CVE-2017-5241: Biscom SFT XSS (FIXED)

Tod Beardsley's avatar

Tod Beardsley

Legislation to Strengthen IoT Marketplace Transparency

Industry Trends

Legislation to Strengthen IoT Marketplace Transparency

Harley Geiger's avatar

Harley Geiger

Setting Up and Managing a Bug Bounty Program

Products and Tools

Setting Up and Managing a Bug Bounty Program

Rapid7's avatar

Rapid7

How to Install and Use PSAD IDS on Ubuntu Linux

Products and Tools

How to Install and Use PSAD IDS on Ubuntu Linux

Rapid7's avatar

Rapid7

How to Install and Configure Bro on Ubuntu Linux

Products and Tools

How to Install and Configure Bro on Ubuntu Linux

Rapid7's avatar

Rapid7

Information Security Risk Management - Introduction

Products and Tools

Information Security Risk Management - Introduction

Rapid7's avatar

Rapid7

Information Security Risk Management - Tiered Approach of NIST SP 800-39

Products and Tools

Information Security Risk Management - Tiered Approach of NIST SP 800-39

Rapid7's avatar

Rapid7

Information Security Risk Management Cycle - Context Establishment Phase

Products and Tools

Information Security Risk Management Cycle - Context Establishment Phase

Rapid7's avatar

Rapid7

The Effective Components of Security Orchestration

Products and Tools

The Effective Components of Security Orchestration

Rapid7's avatar

Rapid7

What is BDD Testing: Practical Examples of Behavior Driven Development Testing

Products and Tools

What is BDD Testing: Practical Examples of Behavior Driven Development Testing

Rapid7's avatar

Rapid7

5 Ways to Use Log Data to Analyze System Performance

Detection and Response

5 Ways to Use Log Data to Analyze System Performance

Rapid7's avatar

Rapid7

Metasploit Wrapup: June 16, 2017

Exposure Management

Metasploit Wrapup: June 16, 2017

Brendan Watters's avatar

Brendan Watters

Announcing Microsoft Azure Asset Discovery in InsightVM

Cloud and Devops Security

Announcing Microsoft Azure Asset Discovery in InsightVM

Ken Mizota's avatar

Ken Mizota

Rapid7 issues comments on NAFTA renegotiation

Industry Trends

Rapid7 issues comments on NAFTA renegotiation

Harley Geiger's avatar

Harley Geiger

What Is User Enumeration?

Cloud and Devops Security

What Is User Enumeration?

Patrick Laverty's avatar

Patrick Laverty

R7-2017-16 | CVE-2017-5244: Lack of CSRF protection for stopping tasks in Metasploit Pro, Express, and Community editions (FIXED)

Vulnerabilities and Exploits

R7-2017-16 | CVE-2017-5244: Lack of CSRF protection for stopping tasks in Metasploit Pro, Express, and Community editions (FIXED)

Sam Huckins's avatar

Sam Huckins

Patch Tuesday - June 2017

Detection and Response

Patch Tuesday - June 2017

Greg Wiseman's avatar

Greg Wiseman

Will Investing in Security Orchestration Make Your SIEM Obsolete?

Products and Tools

Will Investing in Security Orchestration Make Your SIEM Obsolete?

Rapid7's avatar

Rapid7

Live Threat-Driven Vulnerability Prioritization

Exposure Management

Live Threat-Driven Vulnerability Prioritization

Jane Man's avatar

Jane Man