The Rapid7 Blog:
Your Signal in the Security Noise

Insights, stories, and guidance from our global security and research teams.

Weekly security updates — no spam. Privacy Policy.

Featured posts

Introducing Rapid7 MDR for Microsoft

Introducing Rapid7 MDR for Microsoft

Read post
The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit

The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit

Read post
What’s New in Rapid7 Products & Services?

What’s New in Rapid7 Products & Services?

Read post
Metasploit Weekly Wrap-Up: Mar. 10, 2023

Exposure Management

Metasploit Weekly Wrap-Up: Mar. 10, 2023

Jack Heysel's avatar

Jack Heysel

[The Lost Bots] S03E01: Tech Stack Consolidation and Bacon

Security Operations

[The Lost Bots] S03E01: Tech Stack Consolidation and Bacon

Amy Hunt's avatar

Amy Hunt

What Tech Companies Should Look For in Cloud Security

Cloud and Devops Security

What Tech Companies Should Look For in Cloud Security

Marla Rosner's avatar

Marla Rosner

Vulnerability Management vs. Vulnerability Assessment

Exposure Management

Vulnerability Management vs. Vulnerability Assessment

Marla Rosner's avatar

Marla Rosner

Metasploit Weekly Wrap-Up: 3/3/23

Exposure Management

Metasploit Weekly Wrap-Up: 3/3/23

Zachary Goldman's avatar

Zachary Goldman

New InsightCloudSec Compliance Pack: Key Takeaways From the Azure Security Benchmark V3

Products and Tools

New InsightCloudSec Compliance Pack: Key Takeaways From the Azure Security Benchmark V3

James Alaniz's avatar

James Alaniz

Active Exploitation of ZK Framework CVE-2022-36537

Threat Research

Active Exploitation of ZK Framework CVE-2022-36537

Stephen Fewer's avatar

Stephen Fewer

Executive Webinar: Confronting Security Fears to Control Cyber Risk

Industry Trends

Executive Webinar: Confronting Security Fears to Control Cyber Risk

Rapid7's avatar

Rapid7

A Shifting Attack Landscape: Rapid7’s 2022 Vulnerability Intelligence Report

Exposure Management

A Shifting Attack Landscape: Rapid7’s 2022 Vulnerability Intelligence Report

Tom Caiazza's avatar

Tom Caiazza

Metasploit Wrap-Up: 2/24/23

Exposure Management

Metasploit Wrap-Up: 2/24/23

Spencer McIntyre's avatar

Spencer McIntyre

The Next Generation of Managed Detection and Response is Here

Detection and Response

The Next Generation of Managed Detection and Response is Here

Jake Godgart's avatar

Jake Godgart

Metasploit Wrap-Up: 2/17/23

Exposure Management

Metasploit Wrap-Up: 2/17/23

Jacquie Harris's avatar

Jacquie Harris

Rapid7 CEO Corey E. Thomas Appointed To National Security Telecommunications Advisory Committee

Industry Trends

Rapid7 CEO Corey E. Thomas Appointed To National Security Telecommunications Advisory Committee

Rapid7's avatar

Rapid7

CIEM is Required for Cloud Security and IAM Providers to Compete: Gartner® Report

Security Operations

CIEM is Required for Cloud Security and IAM Providers to Compete: Gartner® Report

Aaron Wells's avatar

Aaron Wells

Patch Tuesday - February 2023

Detection and Response

Patch Tuesday - February 2023

Adam Barnett's avatar

Adam Barnett

A Deep Dive into Reversing CODESYS

Threat Research

A Deep Dive into Reversing CODESYS

Tod Beardsley's avatar

Tod Beardsley

Rapid7 and USF: Building a diverse cybersecurity workforce is not optional

Products and Tools

Rapid7 and USF: Building a diverse cybersecurity workforce is not optional

Rapid7's avatar

Rapid7

Metasploit Weekly Wrap-Up: 2/10/23

Exposure Management

Metasploit Weekly Wrap-Up: 2/10/23

Navya Harika Karaka's avatar

Navya Harika Karaka

Nearly 19,000 ESXi Servers Still Vulnerable to CVE-2021-21974

Detection and Response

Nearly 19,000 ESXi Servers Still Vulnerable to CVE-2021-21974

Erick Galinkin's avatar

Erick Galinkin

Evasion Techniques Uncovered: An Analysis of APT Methods

Detection and Response

Evasion Techniques Uncovered: An Analysis of APT Methods

Christiaan Beek's avatar

Christiaan Beek

Year In Review: Rapid7 InsightIDR

Products and Tools

Year In Review: Rapid7 InsightIDR

Dina Durutlic's avatar

Dina Durutlic