The Rapid7 Blog:
Your Signal in the Security Noise

Insights, stories, and guidance from our global security and research teams.

Weekly security updates — no spam. Privacy Policy.

Featured posts

Rapid7's Q3 2025 Threat Landscape Report

Rapid7's Q3 2025 Threat Landscape Report

Read post
The End of Legacy SIEM as we Know it

The End of Legacy SIEM as we Know it

Read post
A New Meeting Invite, or a New Attack Vector?

A New Meeting Invite, or a New Attack Vector?

Read post
Legal Considerations for Widespread Scanning

Threat Research

Legal Considerations for Widespread Scanning

Marcia Hofmann's avatar

Marcia Hofmann

Social-Engineer CTF Report Released

Vulnerabilities and Exploits

Social-Engineer CTF Report Released

socialengineer's avatar

socialengineer

National Cyber Security Awareness Month: Avoiding Cloud Crisis

Industry Trends

National Cyber Security Awareness Month: Avoiding Cloud Crisis

Jen Ellis's avatar

Jen Ellis

How to Easily Get All Your Logs from AWS EC2

Products and Tools

How to Easily Get All Your Logs from AWS EC2

Rapid7's avatar

Rapid7

Weekly Update: vBulletin's and D-Link's Backdoors, and MS13-080 revisited

Rapid7 Blog

Weekly Update: vBulletin's and D-Link's Backdoors, and MS13-080 revisited

Tod Beardsley's avatar

Tod Beardsley

Audit the security configuration on your Cisco devices with Nexpose 5.7.14

Rapid7 Blog

Audit the security configuration on your Cisco devices with Nexpose 5.7.14

csong's avatar

csong

National Cyber Security Awareness Month: Basic Password Hygiene

Rapid7 Blog

National Cyber Security Awareness Month: Basic Password Hygiene

Jen Ellis's avatar

Jen Ellis

How To Track Peak Load and Memory Usage vs Response Time on Heroku

Products and Tools

How To Track Peak Load and Memory Usage vs Response Time on Heroku

Rapid7's avatar

Rapid7

How To Receive Log Alerts Via Flashing Lights In Your Office or Home

Products and Tools

How To Receive Log Alerts Via Flashing Lights In Your Office or Home

Rapid7's avatar

Rapid7

Staying Stealthy: Passive Network Discovery with Metasploit

Products and Tools

Staying Stealthy: Passive Network Discovery with Metasploit

Christian Kirsch's avatar

Christian Kirsch

National Cyber Security Awareness Month: Keeping Mobile Devices Safe

Rapid7 Blog

National Cyber Security Awareness Month: Keeping Mobile Devices Safe

ssahay's avatar

ssahay

GestioIP Authenticated Remote Command Execution module

Industry Trends

GestioIP Authenticated Remote Command Execution module

bperry's avatar

bperry

It's the Great Pumpkin Patching Contest, Charlie Brown!

Rapid7 Blog

It's the Great Pumpkin Patching Contest, Charlie Brown!

Patrick Hellen's avatar

Patrick Hellen

Metasploit Releases CVE-2013-3893 (IE SetMouseCapture Use-After-Free)

Rapid7 Blog

Metasploit Releases CVE-2013-3893 (IE SetMouseCapture Use-After-Free)

Wei Chen's avatar

Wei Chen

Scanning All The Things

Rapid7 Blog

Scanning All The Things

rep's avatar

rep

Welcome to Project Sonar!

Rapid7 Blog

Welcome to Project Sonar!

HD Moore's avatar

HD Moore

Weekly Update: New Exploits for MS13-069, MS13-071

Vulnerabilities and Exploits

Weekly Update: New Exploits for MS13-069, MS13-071

Tod Beardsley's avatar

Tod Beardsley

Change the Theme, Get a Shell: Remote Code Execution with MS13-071

Vulnerabilities and Exploits

Change the Theme, Get a Shell: Remote Code Execution with MS13-071

Juan Vazquez's avatar

Juan Vazquez

Understanding Security Control Grades

Rapid7 Blog

Understanding Security Control Grades

Bill Sharar's avatar

Bill Sharar

IE 0-day: exploit code is now widely available (CVE-2013-3893)

Exposure Management

IE 0-day: exploit code is now widely available (CVE-2013-3893)

Ross Barrett's avatar

Ross Barrett

How to Log Client-side JavaScript Events – Logging for the Web with le.js

Products and Tools

How to Log Client-side JavaScript Events – Logging for the Web with le.js

Rapid7's avatar

Rapid7