The Rapid7 Blog:
Your Signal in the Security Noise

Insights, stories, and guidance from our global security and research teams.

Weekly security updates — no spam. Privacy Policy.

Featured posts

Introducing Rapid7 MDR for Microsoft

Introducing Rapid7 MDR for Microsoft

Read post
The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit

The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit

Read post
What’s New in Rapid7 Products & Services?

What’s New in Rapid7 Products & Services?

Read post
CVE-2023-29298: Adobe ColdFusion Access Control Bypass

Exposure Management

CVE-2023-29298: Adobe ColdFusion Access Control Bypass

Stephen Fewer's avatar

Stephen Fewer

What’s New in Rapid7 Detection & Response: Q2 2023 in Review

Products and Tools

What’s New in Rapid7 Detection & Response: Q2 2023 in Review

Stacy Moran's avatar

Stacy Moran

Metasploit Weekly Wrap-Up: 7/7/23

Exposure Management

Metasploit Weekly Wrap-Up: 7/7/23

Dean Welch's avatar

Dean Welch

Showcasing SecOps Metrics That Matter

Security Operations

Showcasing SecOps Metrics That Matter

Rapid7's avatar

Rapid7

The Japanese Automotive Industry Attack Landscape

Rapid7 Blog

The Japanese Automotive Industry Attack Landscape

Tom Caiazza's avatar

Tom Caiazza

PenTales: “User enumeration is not a vulnerability” – I beg to differ

Exposure Management

PenTales: “User enumeration is not a vulnerability” – I beg to differ

Ben Leiden's avatar

Ben Leiden

Alerting Rules: InsightIDR Raises the Bar for Visibility and Coverage

Detection and Response

Alerting Rules: InsightIDR Raises the Bar for Visibility and Coverage

Rapid7's avatar

Rapid7

Metasploit Weekly Wrap-Up: 6/30/23

Exposure Management

Metasploit Weekly Wrap-Up: 6/30/23

Brendan Watters's avatar

Brendan Watters

Four Signs You Need to Consolidate Your Tech Stack

Security Operations

Four Signs You Need to Consolidate Your Tech Stack

Rapid7's avatar

Rapid7

What’s New in InsightVM and Nexpose: Q2 2023 in Review

Products and Tools

What’s New in InsightVM and Nexpose: Q2 2023 in Review

Roshnee Mistry Shah's avatar

Roshnee Mistry Shah

Rapid7 Solutions for Partners

Products and Tools

Rapid7 Solutions for Partners

Tom Caiazza's avatar

Tom Caiazza

The Japanese Threat Landscape: A Report on Cyber Threats in the Third Largest Economy on Earth

Threat Research

The Japanese Threat Landscape: A Report on Cyber Threats in the Third Largest Economy on Earth

Tom Caiazza's avatar

Tom Caiazza

Standardizing SaaS Data to Drive Greater Cloud Security Efficacy

Products and Tools

Standardizing SaaS Data to Drive Greater Cloud Security Efficacy

Dina Durutlic's avatar

Dina Durutlic

Uncover and Remediate Toxic Combinations with Attack Path Analysis

Products and Tools

Uncover and Remediate Toxic Combinations with Attack Path Analysis

James Alaniz's avatar

James Alaniz

Metasploit Weekly Wrap-Up: 6/23/23

Exposure Management

Metasploit Weekly Wrap-Up: 6/23/23

Jeffrey Martin's avatar

Jeffrey Martin

Multiple Vulnerabilities in Fortra Globalscape EFT Administration Server [FIXED]

Exposure Management

Multiple Vulnerabilities in Fortra Globalscape EFT Administration Server [FIXED]

Ron Bowes's avatar

Ron Bowes

Cyber Asset Attack Surface Management 101

Detection and Response

Cyber Asset Attack Surface Management 101

Rapid7's avatar

Rapid7

Metasploit Weekly Wrap-Up: Jun. 16, 2023

Exposure Management

Metasploit Weekly Wrap-Up: Jun. 16, 2023

Alan David Foster's avatar

Alan David Foster

CVE-2023-34362: MOVEit Vulnerability Timeline of Events

Exposure Management

CVE-2023-34362: MOVEit Vulnerability Timeline of Events

Rapid7's avatar

Rapid7

Patch Tuesday - June 2023

Detection and Response

Patch Tuesday - June 2023

Adam Barnett's avatar

Adam Barnett

CVE-2023-27997: Critical Fortinet Fortigate Remote Code Execution Vulnerability

Exposure Management

CVE-2023-27997: Critical Fortinet Fortigate Remote Code Execution Vulnerability

Drew Burton's avatar

Drew Burton