The Rapid7 Blog:
Your Signal in the Security Noise

Insights, stories, and guidance from our global security and research teams.

Weekly security updates — no spam. Privacy Policy.

Featured posts

Introducing Rapid7 MDR for Microsoft

Introducing Rapid7 MDR for Microsoft

Read post
The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit

The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit

Read post
What’s New in Rapid7 Products & Services?

What’s New in Rapid7 Products & Services?

Read post
Voices of the Experts: What to Expect from Our Predictions Webinar

Industry Trends

Voices of the Experts: What to Expect from Our Predictions Webinar

Rapid7's avatar

Rapid7

React2Shell (CVE-2025-55182) - Critical unauthenticated RCE affecting React Server Components

Vulnerabilities and Exploits

React2Shell (CVE-2025-55182) - Critical unauthenticated RCE affecting React Server Components

Rapid7's avatar

Rapid7

From Policy to Practice: Why Cyber Resilience Needs a Reboot

Industry Trends

From Policy to Practice: Why Cyber Resilience Needs a Reboot

Rapid7's avatar

Rapid7

Announcing Rapid7’s Next-Gen SIEM Buyer’s Guide

Detection and Response

Announcing Rapid7’s Next-Gen SIEM Buyer’s Guide

Rapid7's avatar

Rapid7

Rapid7 Helps Lower Your Cost to Assurance for HITRUST

Products and Tools

Rapid7 Helps Lower Your Cost to Assurance for HITRUST

Jon Schipp's avatar

Jon Schipp

Metasploit Wrap-Up 11/28/2025

Products and Tools

Metasploit Wrap-Up 11/28/2025

Simon Janusz's avatar

Simon Janusz

From Extortion to E-commerce: How Ransomware Groups Turn Breaches into Bidding Wars

Threat Research

From Extortion to E-commerce: How Ransomware Groups Turn Breaches into Bidding Wars

Alexandra Blia's avatar
Gal Givon's avatar

Alexandra Blia, Gal Givon

Metasploit Wrap-Up 11/21/2025

Products and Tools

Metasploit Wrap-Up 11/21/2025

Alan David Foster's avatar

Alan David Foster

Onboard at Cloud Speed with Rapid7 and AWS IAM Delegation

Cloud and Devops Security

Onboard at Cloud Speed with Rapid7 and AWS IAM Delegation

Rapid7's avatar

Rapid7

Introducing Rapid7 Curated Intelligence Rules for AWS Network Firewall

Cloud and Devops Security

Introducing Rapid7 Curated Intelligence Rules for AWS Network Firewall

Rapid7's avatar

Rapid7

CVE-2025-13315, CVE-2025-13316: Critical Twonky Server Authentication Bypass (NOT FIXED)

Vulnerabilities and Exploits

CVE-2025-13315, CVE-2025-13316: Critical Twonky Server Authentication Bypass (NOT FIXED)

Ryan Emmons's avatar

Ryan Emmons

The State of Security Today: Setting the Stage for 2026

Industry Trends

The State of Security Today: Setting the Stage for 2026

Rapid7's avatar

Rapid7

Metasploit Wrap-Up 11/14/2025

Products and Tools

Metasploit Wrap-Up 11/14/2025

Brendan Watters's avatar

Brendan Watters

Threat Landscape of the Building and Construction Sector Part Two: Ransomware

Threat Research

Threat Landscape of the Building and Construction Sector Part Two: Ransomware

Jeremy Makowski's avatar

Jeremy Makowski

CVE-2025-64446: Critical Vulnerability in Fortinet FortiWeb Exploited in the Wild

Vulnerabilities and Exploits

CVE-2025-64446: Critical Vulnerability in Fortinet FortiWeb Exploited in the Wild

Rapid7's avatar

Rapid7

Rapid7 Named a Leader in the 2025 Gartner Exposure Assessment Platform Magic Quadrant

Exposure Management

Rapid7 Named a Leader in the 2025 Gartner Exposure Assessment Platform Magic Quadrant

Rapid7's avatar

Rapid7

Attackers accelerate, adapt, and automate: Rapid7’s Q3 2025 Threat Landscape Report

Threat Research

Attackers accelerate, adapt, and automate: Rapid7’s Q3 2025 Threat Landscape Report

Rapid7's avatar

Rapid7

Patch Tuesday - November 2025

Exposure Management

Patch Tuesday - November 2025

Adam Barnett's avatar

Adam Barnett

Protecting What Powers Business: Rapid7 and Microsoft Partner to Simplify Security

Products and Tools

Protecting What Powers Business: Rapid7 and Microsoft Partner to Simplify Security

Rapid7's avatar

Rapid7

Metasploit Wrap-Up 11/07/2025

Products and Tools

Metasploit Wrap-Up 11/07/2025

Marcin Walas's avatar

Marcin Walas

Threat Landscape of the Building and Construction Sector, Part One: Initial Access, Supply Chain, and the Internet of Things

Threat Research

Threat Landscape of the Building and Construction Sector, Part One: Initial Access, Supply Chain, and the Internet of Things

Jeremy Makowski's avatar

Jeremy Makowski