The Rapid7 Blog:
Your Signal in the Security Noise

Insights, stories, and guidance from our global security and research teams.

Weekly security updates — no spam. Privacy Policy.

Featured posts

Introducing Rapid7 MDR for Microsoft

Introducing Rapid7 MDR for Microsoft

Read post
The End of Legacy SIEM as we Know it

The End of Legacy SIEM as we Know it

Read post
What’s New in Rapid7 Products & Services?

What’s New in Rapid7 Products & Services?

Read post
CVE-2025-37164: Critical unauthenticated RCE affecting Hewlett Packard Enterprise OneView

Vulnerabilities and Exploits

CVE-2025-37164: Critical unauthenticated RCE affecting Hewlett Packard Enterprise OneView

Rapid7's avatar

Rapid7

Critical vulnerabilities in Fortinet CVE-2025-59718, CVE-2025-59719, CVE-2026-24858 exploited in the wild

Vulnerabilities and Exploits

Critical vulnerabilities in Fortinet CVE-2025-59718, CVE-2025-59719, CVE-2026-24858 exploited in the wild

Rapid7's avatar

Rapid7

Test for React2Shell with Application Security using New Functionality

Products and Tools

Test for React2Shell with Application Security using New Functionality

Rapid7's avatar

Rapid7

Dynamic EASM Discovery: Continuous Discovery for a Changing Attack Surface

Products and Tools

Dynamic EASM Discovery: Continuous Discovery for a Changing Attack Surface

Ed Montgomery's avatar

Ed Montgomery

SantaStealer is Coming to Town: A New, Ambitious Infostealer Advertised on Underground Forums

Threat Research

SantaStealer is Coming to Town: A New, Ambitious Infostealer Advertised on Underground Forums

Milan Spinka's avatar

Milan Spinka

Metasploit Wrap-Up 12/12/2025

Products and Tools

Metasploit Wrap-Up 12/12/2025

Spencer McIntyre's avatar

Spencer McIntyre

New Research: Multifunction Printer (MFP) Security Concerns within the Enterprise Business Environment

Vulnerabilities and Exploits

New Research: Multifunction Printer (MFP) Security Concerns within the Enterprise Business Environment

Deral Heiland's avatar
Sam Moses's avatar

Deral Heiland, Sam Moses

Geopolitics and Cyber Risk: How Global Tensions Shape the Attack Surface

Industry Trends

Geopolitics and Cyber Risk: How Global Tensions Shape the Attack Surface

Jeremy Makowski's avatar

Jeremy Makowski

Patch Tuesday - December 2025

Exposure Management

Patch Tuesday - December 2025

Adam Barnett's avatar

Adam Barnett

CVE-2025-10573: Ivanti EPM Unauthenticated Stored Cross-Site Scripting (Fixed)

Vulnerabilities and Exploits

CVE-2025-10573: Ivanti EPM Unauthenticated Stored Cross-Site Scripting (Fixed)

Ryan Emmons's avatar

Ryan Emmons

Metasploit Wrap-Up 12/05/2025

Products and Tools

Metasploit Wrap-Up 12/05/2025

Jack Heysel's avatar

Jack Heysel

Voices of the Experts: What to Expect from Our Predictions Webinar

Industry Trends

Voices of the Experts: What to Expect from Our Predictions Webinar

Rapid7's avatar

Rapid7

React2Shell (CVE-2025-55182) - Critical unauthenticated RCE affecting React Server Components

Vulnerabilities and Exploits

React2Shell (CVE-2025-55182) - Critical unauthenticated RCE affecting React Server Components

Rapid7's avatar

Rapid7

From Policy to Practice: Why Cyber Resilience Needs a Reboot

Industry Trends

From Policy to Practice: Why Cyber Resilience Needs a Reboot

Rapid7's avatar

Rapid7

Announcing Rapid7’s Next-Gen SIEM Buyer’s Guide

Detection and Response

Announcing Rapid7’s Next-Gen SIEM Buyer’s Guide

Rapid7's avatar

Rapid7

Rapid7 Helps Lower Your Cost to Assurance for HITRUST

Products and Tools

Rapid7 Helps Lower Your Cost to Assurance for HITRUST

Jon Schipp's avatar

Jon Schipp

Metasploit Wrap-Up 11/28/2025

Products and Tools

Metasploit Wrap-Up 11/28/2025

Simon Janusz's avatar

Simon Janusz

From Extortion to E-commerce: How Ransomware Groups Turn Breaches into Bidding Wars

Threat Research

From Extortion to E-commerce: How Ransomware Groups Turn Breaches into Bidding Wars

Alexandra Blia's avatar
Gal Givon's avatar

Alexandra Blia, Gal Givon

Metasploit Wrap-Up 11/21/2025

Products and Tools

Metasploit Wrap-Up 11/21/2025

Alan David Foster's avatar

Alan David Foster

Onboard at Cloud Speed with Rapid7 and AWS IAM Delegation

Cloud and Devops Security

Onboard at Cloud Speed with Rapid7 and AWS IAM Delegation

Rapid7's avatar

Rapid7

Introducing Rapid7 Curated Intelligence Rules for AWS Network Firewall

Cloud and Devops Security

Introducing Rapid7 Curated Intelligence Rules for AWS Network Firewall

Rapid7's avatar

Rapid7