The Rapid7 Blog:
Your Signal in the Security Noise

Insights, stories, and guidance from our global security and research teams.

Weekly security updates — no spam. Privacy Policy.

Featured posts

How Modern SOCs are Fighting against Alert Fatigue

How Modern SOCs are Fighting against Alert Fatigue

Read post
Metasploit Weekly Wrap-Up: 11/11/22

Exposure Management

Metasploit Weekly Wrap-Up: 11/11/22

Alan David Foster's avatar

Alan David Foster

Rapid7’s Impact from OpenSSL Buffer Overflow Vulnerabilities (CVE-2022-3786 & CVE-2022-3602)

Vulnerabilities and Exploits

Rapid7’s Impact from OpenSSL Buffer Overflow Vulnerabilities (CVE-2022-3786 & CVE-2022-3602)

Rapid7's avatar

Rapid7

Culture Fitness

Security Operations

Culture Fitness

Jake Godgart's avatar

Jake Godgart

Cloud Security: Buyer Be Critical

Products and Tools

Cloud Security: Buyer Be Critical

Aaron Wells's avatar

Aaron Wells

New Research: Optimizing DAST Vulnerability Triage with Deep Learning

Threat Research

New Research: Optimizing DAST Vulnerability Triage with Deep Learning

Tom Caiazza's avatar

Tom Caiazza

New MITRE Engenuity ATT&CK® Evaluation: Rapid7 MDR Excels

Products and Tools

New MITRE Engenuity ATT&CK® Evaluation: Rapid7 MDR Excels

Warwick Webb's avatar

Warwick Webb

Patch Tuesday - November 2022

Detection and Response

Patch Tuesday - November 2022

Greg Wiseman's avatar

Greg Wiseman

Hands-On IoT Hacking: Rapid7 at DEF CON 30 IoT Village, Pt. 4

Detection and Response

Hands-On IoT Hacking: Rapid7 at DEF CON 30 IoT Village, Pt. 4

Deral Heiland's avatar

Deral Heiland

Metasploit Weekly Wrap-Up: 11/4/22

Exposure Management

Metasploit Weekly Wrap-Up: 11/4/22

Brendan Watters's avatar

Brendan Watters

Rapid7’s Impact from Apache Commons Text Vulnerability (CVE-2022-42889)

Vulnerabilities and Exploits

Rapid7’s Impact from Apache Commons Text Vulnerability (CVE-2022-42889)

Rapid7's avatar

Rapid7

Go Inside Rapid7 MDR: Timelines and Tick Tocks

Products and Tools

Go Inside Rapid7 MDR: Timelines and Tick Tocks

Mikayla Wyman's avatar

Mikayla Wyman

Common questions when evolving your VM program

Exposure Management

Common questions when evolving your VM program

Rapid7's avatar

Rapid7

Hands-On IoT Hacking: Rapid7 at DEF CON 30 IoT Village, Pt. 3

Detection and Response

Hands-On IoT Hacking: Rapid7 at DEF CON 30 IoT Village, Pt. 3

Deral Heiland's avatar

Deral Heiland

CVE-2022-3786 and CVE-2022-3602: Two High-Severity Buffer Overflow Vulnerabilities in OpenSSL Fixed

Exposure Management

CVE-2022-3786 and CVE-2022-3602: Two High-Severity Buffer Overflow Vulnerabilities in OpenSSL Fixed

Rapid7's avatar

Rapid7

7 Rapid Questions with Toshio Honda, Sr. Security Solutions Engineer

Rapid7 Blog

7 Rapid Questions with Toshio Honda, Sr. Security Solutions Engineer

Rapid7's avatar

Rapid7

Metasploit Weekly Wrap-Up: Oct. 28, 2022

Exposure Management

Metasploit Weekly Wrap-Up: Oct. 28, 2022

Shelby Pace's avatar

Shelby Pace

How to Foster Talent in a Cybersecurity Skills Gap

Industry Trends

How to Foster Talent in a Cybersecurity Skills Gap

Jake Godgart's avatar

Jake Godgart

CVE-2021-39144: VMware Cloud Foundation Unauthenticated Remote Code Execution

Vulnerabilities and Exploits

CVE-2021-39144: VMware Cloud Foundation Unauthenticated Remote Code Execution

Caitlin Condon's avatar

Caitlin Condon

Hands-On IoT Hacking: Rapid7 at DEF CON 30 IoT Village, Pt. 2

Detection and Response

Hands-On IoT Hacking: Rapid7 at DEF CON 30 IoT Village, Pt. 2

Deral Heiland's avatar

Deral Heiland

Adapting existing VM programs to regain control

Products and Tools

Adapting existing VM programs to regain control

Ryan Blanchard's avatar

Ryan Blanchard

Metasploit Weekly Wrap-Up: 10/21/22

Exposure Management

Metasploit Weekly Wrap-Up: 10/21/22

Spencer McIntyre's avatar

Spencer McIntyre