The Rapid7 Blog:
Your Signal in the Security Noise

Insights, stories, and guidance from our global security and research teams.

Weekly security updates — no spam. Privacy Policy.

Featured posts

Rapid7's Q3 2025 Threat Landscape Report

Rapid7's Q3 2025 Threat Landscape Report

Read post
The End of Legacy SIEM as we Know it

The End of Legacy SIEM as we Know it

Read post
A New Meeting Invite, or a New Attack Vector?

A New Meeting Invite, or a New Attack Vector?

Read post
Take Command Summit: Take Breaches from Inevitable to Preventable on May 21

Products and Tools

Take Command Summit: Take Breaches from Inevitable to Preventable on May 21

Rapid7's avatar

Rapid7

Metasploit Weekly Wrap-Up 04/19/24

Exposure Management

Metasploit Weekly Wrap-Up 04/19/24

Jack Heysel's avatar

Jack Heysel

Enforce and Report on PCI DSS v4 Compliance with Rapid7

Exposure Management

Enforce and Report on PCI DSS v4 Compliance with Rapid7

Lara Sunday's avatar

Lara Sunday

Rapid7 Insight Platform Achieves Level 2 TX-Ramp Authorization

Rapid7 Blog

Rapid7 Insight Platform Achieves Level 2 TX-Ramp Authorization

Rapid7's avatar

Rapid7

Metasploit Weekly Wrap-Up 04/12/24

Exposure Management

Metasploit Weekly Wrap-Up 04/12/24

Simon Janusz's avatar

Simon Janusz

CVE-2024-3400: Critical Command Injection Vulnerability in Palo Alto Networks Firewalls

Exposure Management

CVE-2024-3400: Critical Command Injection Vulnerability in Palo Alto Networks Firewalls

Caitlin Condon's avatar

Caitlin Condon

Stories from the SOC Part 2: MSIX Installer Utilizes Telegram Bot to Execute IDAT Loader

Detection and Response

Stories from the SOC Part 2: MSIX Installer Utilizes Telegram Bot to Execute IDAT Loader

Tom Elkins's avatar

Tom Elkins

Patch Tuesday - April 2024

Exposure Management

Patch Tuesday - April 2024

Adam Barnett's avatar

Adam Barnett

Metasploit Weekly Wrap-Up 04/05/2024

Exposure Management

Metasploit Weekly Wrap-Up 04/05/2024

Alan David Foster's avatar

Alan David Foster

What’s New in Rapid7 Products & Services: Q1 2024 in Review

Products and Tools

What’s New in Rapid7 Products & Services: Q1 2024 in Review

Margaret Wei's avatar

Margaret Wei

CVE-2024-0394: Rapid7 Minerva Armor Privilege Escalation (FIXED)

Vulnerabilities and Exploits

CVE-2024-0394: Rapid7 Minerva Armor Privilege Escalation (FIXED)

Dani Kamanovsky's avatar

Dani Kamanovsky

Challenges Drive Career Growth: Meet Rudina Tafhasaj

Rapid7 Blog

Challenges Drive Career Growth: Meet Rudina Tafhasaj

Rapid7's avatar

Rapid7

Backdoored XZ Utils (CVE-2024-3094)

Vulnerabilities and Exploits

Backdoored XZ Utils (CVE-2024-3094)

Rapid7's avatar

Rapid7

Metasploit Weekly Wrap-Up 03/29/2024

Exposure Management

Metasploit Weekly Wrap-Up 03/29/2024

Brendan Watters's avatar

Brendan Watters

Stories from the SOC Part 1: IDAT Loader to BruteRatel

Products and Tools

Stories from the SOC Part 1: IDAT Loader to BruteRatel

Tom Elkins's avatar

Tom Elkins

Metasploit Framework 6.4 Released

Products and Tools

Metasploit Framework 6.4 Released

Spencer McIntyre's avatar

Spencer McIntyre

Metasploit Weekly Wrap-Up 03/22/2024

Exposure Management

Metasploit Weekly Wrap-Up 03/22/2024

Egor Kalinichev's avatar

Egor Kalinichev

Why The External Attack Surface Matters: An analysis into APAC related threat activities

Threat Research

Why The External Attack Surface Matters: An analysis into APAC related threat activities

Rapid7's avatar

Rapid7

The Updated APT Playbook: Tales from the Kimsuky threat actor group

Threat Research

The Updated APT Playbook: Tales from the Kimsuky threat actor group

Rapid7's avatar

Rapid7

Rapid7 Offers Continued Vulnerability Coverage in the Face of NVD Delays

Exposure Management

Rapid7 Offers Continued Vulnerability Coverage in the Face of NVD Delays

Tyler Terenzoni's avatar

Tyler Terenzoni

Metasploit Wrap-Up 03/15/2024

Exposure Management

Metasploit Wrap-Up 03/15/2024

Zachary Goldman's avatar

Zachary Goldman