Rapid7

The Rapid7 Blog:
Your Signal in the Security Noise

Insights, stories, and guidance from our global security and research teams.

Weekly security updates — no spam. Privacy Policy.

Featured posts

How Modern SOCs are Fighting against Alert Fatigue

How Modern SOCs are Fighting against Alert Fatigue

Read post
Nearly 19,000 ESXi Servers Still Vulnerable to CVE-2021-21974

Detection and Response

Nearly 19,000 ESXi Servers Still Vulnerable to CVE-2021-21974

Erick Galinkin's avatar

Erick Galinkin

Evasion Techniques Uncovered: An Analysis of APT Methods

Detection and Response

Evasion Techniques Uncovered: An Analysis of APT Methods

Christiaan Beek's avatar

Christiaan Beek

Year In Review: Rapid7 InsightIDR

Products and Tools

Year In Review: Rapid7 InsightIDR

Dina Durutlic's avatar

Dina Durutlic

Rapid7 Recognized on Bloomberg Gender Equality Index, Continues Commitments to Support DEI

Rapid7 Blog

Rapid7 Recognized on Bloomberg Gender Equality Index, Continues Commitments to Support DEI

Rapid7's avatar

Rapid7

CVE-2022-21587: Rapid7 Observed Exploitation of Oracle E-Business Suite Vulnerability

Vulnerabilities and Exploits

CVE-2022-21587: Rapid7 Observed Exploitation of Oracle E-Business Suite Vulnerability

Glenn Thorpe's avatar

Glenn Thorpe

Multiple DMS XSS (CVE-2022-47412 through CVE-20222-47419)

Vulnerabilities and Exploits

Multiple DMS XSS (CVE-2022-47412 through CVE-20222-47419)

Tod Beardsley's avatar

Tod Beardsley

CVE-2023-22501: Critical Broken Authentication Flaw in Jira Service Management Products

Exposure Management

CVE-2023-22501: Critical Broken Authentication Flaw in Jira Service Management Products

Caitlin Condon's avatar

Caitlin Condon

Ransomware Campaign Compromising VMware ESXi Servers

Detection and Response

Ransomware Campaign Compromising VMware ESXi Servers

Caitlin Condon's avatar

Caitlin Condon

Metasploit Weekly Wrap-Up: 2/2/23

Exposure Management

Metasploit Weekly Wrap-Up: 2/2/23

Dean Welch's avatar

Dean Welch

Exploitation of GoAnywhere MFT zero-day vulnerability

Threat Research

Exploitation of GoAnywhere MFT zero-day vulnerability

Caitlin Condon's avatar

Caitlin Condon

Troubleshooting InsightAppSec Authentication Issues

Products and Tools

Troubleshooting InsightAppSec Authentication Issues

Shane Queeney's avatar

Shane Queeney

XDR, the Beatles, and Blunt Instruments

Detection and Response

XDR, the Beatles, and Blunt Instruments

Amy Hunt's avatar

Amy Hunt

CVE-2023-22374: F5 BIG-IP Format String Vulnerability

Vulnerabilities and Exploits

CVE-2023-22374: F5 BIG-IP Format String Vulnerability

Ron Bowes's avatar

Ron Bowes

A Customer Success Manager’s Journey to Cybersecurity

Rapid7 Blog

A Customer Success Manager’s Journey to Cybersecurity

Rapid7's avatar

Rapid7

Rapid7 Observes Use of Microsoft OneNote to Spread Redline Infostealer and Qakbot Malware

Industry Trends

Rapid7 Observes Use of Microsoft OneNote to Spread Redline Infostealer and Qakbot Malware

Rapid7's avatar

Rapid7

Threat Intelligence: 2022 Year in Review

Products and Tools

Threat Intelligence: 2022 Year in Review

Stacy Moran's avatar

Stacy Moran

Metasploit Framework 6.3 Released

Exposure Management

Metasploit Framework 6.3 Released

Alan David Foster's avatar

Alan David Foster

Metasploit Weekly Wrap-Up: 1/27/23

Exposure Management

Metasploit Weekly Wrap-Up: 1/27/23

Shelby Pace's avatar

Shelby Pace

The High Cost of Human Error In OT Systems

Detection and Response

The High Cost of Human Error In OT Systems

Rapid7's avatar

Rapid7

3 Ways to Apply a Risk-Based Approach to Threat Detection, Investigation, and Response: Gartner® Report

Detection and Response

3 Ways to Apply a Risk-Based Approach to Threat Detection, Investigation, and Response: Gartner® Report

Aaron Wells's avatar

Aaron Wells

Rapid7 Added to Carahsoft GSA Schedule Contract

Industry Trends

Rapid7 Added to Carahsoft GSA Schedule Contract

Rapid7's avatar

Rapid7