The Rapid7 Blog:
Your Signal in the Security Noise

Insights, stories, and guidance from our global security and research teams.

Weekly security updates — no spam. Privacy Policy.

Featured posts

Rapid7's Q3 2025 Threat Landscape Report

Rapid7's Q3 2025 Threat Landscape Report

Read post
The End of Legacy SIEM as we Know it

The End of Legacy SIEM as we Know it

Read post
A New Meeting Invite, or a New Attack Vector?

A New Meeting Invite, or a New Attack Vector?

Read post
Automating Qakbot Detection at Scale With Velociraptor

Products and Tools

Automating Qakbot Detection at Scale With Velociraptor

Matthew Green's avatar

Matthew Green

Metasploit Weekly Wrap-Up: 4/14/23

Products and Tools

Metasploit Weekly Wrap-Up: 4/14/23

Shelby Pace's avatar

Shelby Pace

Anarchy in the UK? Not Quite: A look at the cyber health of the FTSE 350

Threat Research

Anarchy in the UK? Not Quite: A look at the cyber health of the FTSE 350

Rapid7's avatar

Rapid7

Patch Tuesday - April 2023

Detection and Response

Patch Tuesday - April 2023

Adam Barnett's avatar

Adam Barnett

7 Rapid Questions: Lindsey Searle

Rapid7 Blog

7 Rapid Questions: Lindsey Searle

Rapid7's avatar

Rapid7

Raptor Technologies Volunteer Management Client-Side Security Controls (FIXED)

Vulnerabilities and Exploits

Raptor Technologies Volunteer Management Client-Side Security Controls (FIXED)

Rapid7's avatar

Rapid7

Rapid7 Podcast Explores Hybrid-First Workplace Learnings

Rapid7 Blog

Rapid7 Podcast Explores Hybrid-First Workplace Learnings

Addie Curley's avatar

Addie Curley

Metasploit Weekly Wrap-Up: 4/7/23

Exposure Management

Metasploit Weekly Wrap-Up: 4/7/23

Jeffrey Martin's avatar

Jeffrey Martin

[The Lost Bots] S03E02: Finding unknowns, even spy balloons

Products and Tools

[The Lost Bots] S03E02: Finding unknowns, even spy balloons

Amy Hunt's avatar

Amy Hunt

Using InsightVM Remediation Projects To Ensure Accountability

Exposure Management

Using InsightVM Remediation Projects To Ensure Accountability

Landon Dalke's avatar

Landon Dalke

Metasploit Weekly Wrap-Up: Mar. 31, 2023

Exposure Management

Metasploit Weekly Wrap-Up: Mar. 31, 2023

Alan David Foster's avatar

Alan David Foster

What’s New in InsightVM and Nexpose: Q1 2023 in Review

Products and Tools

What’s New in InsightVM and Nexpose: Q1 2023 in Review

Roshnee Mistry Shah's avatar

Roshnee Mistry Shah

Velociraptor Version 0.6.8 Available Now

Detection and Response

Velociraptor Version 0.6.8 Available Now

Carlos Canto's avatar

Carlos Canto

Rapid7 Announces Partner of the Year Awards 2023 Winners

Rapid7 Blog

Rapid7 Announces Partner of the Year Awards 2023 Winners

Rapid7's avatar

Rapid7

Backdoored 3CXDesktopApp Installer Used in Active Threat Campaign

Vulnerabilities and Exploits

Backdoored 3CXDesktopApp Installer Used in Active Threat Campaign

Rapid7's avatar

Rapid7

Executive Webinar: Confronting Security Fears to Control Cyber Risk, Part Three

Industry Trends

Executive Webinar: Confronting Security Fears to Control Cyber Risk, Part Three

Rapid7's avatar

Rapid7

Multiple Vulnerabilities in Rocket Software UniRPC server (Fixed)

Vulnerabilities and Exploits

Multiple Vulnerabilities in Rocket Software UniRPC server (Fixed)

Ron Bowes's avatar

Ron Bowes

What’s New in InsightIDR: Q1 2023 in Review

Products and Tools

What’s New in InsightIDR: Q1 2023 in Review

Dina Durutlic's avatar

Dina Durutlic

Active Exploitation of IBM Aspera Faspex CVE-2022-47986

Exposure Management

Active Exploitation of IBM Aspera Faspex CVE-2022-47986

Caitlin Condon's avatar

Caitlin Condon

Metasploit Weekly Wrap-Up: 3/24/23

Exposure Management

Metasploit Weekly Wrap-Up: 3/24/23

Jack Heysel's avatar

Jack Heysel

Center for Internet Security (CIS) unveils Azure Foundations Benchmark v2.0.0

Products and Tools

Center for Internet Security (CIS) unveils Azure Foundations Benchmark v2.0.0

James Alaniz's avatar

James Alaniz