The Rapid7 Blog:
Your Signal in the Security Noise

Insights, stories, and guidance from our global security and research teams.

Weekly security updates — no spam. Privacy Policy.

Featured posts

Introducing Rapid7 MDR for Microsoft

Introducing Rapid7 MDR for Microsoft

Read post
The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit

The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit

Read post
What’s New in Rapid7 Products & Services?

What’s New in Rapid7 Products & Services?

Read post
Inside Russian Market: Uncovering the Botnet Empire

Threat Research

Inside Russian Market: Uncovering the Botnet Empire

Alexandra Blia's avatar
Maor Weinberger's avatar

Alexandra Blia, Maor Weinberger

Crimson Collective: A New Threat Group Observed Operating in the Cloud

Threat Research

Crimson Collective: A New Threat Group Observed Operating in the Cloud

Jakub Zvarik's avatar

Jakub Zvarik

The Business of Cybercrime: Raj Samani on Access, Ransomware, and What Comes Next

Industry Trends

The Business of Cybercrime: Raj Samani on Access, Ransomware, and What Comes Next

Rapid7's avatar

Rapid7

What Recent Cyber Attacks Reveal About Readiness in 2025

Industry Trends

What Recent Cyber Attacks Reveal About Readiness in 2025

Emma Burdett's avatar

Emma Burdett

CVE-2025-61882: Critical 0day in Oracle E-Business Suite exploited in-the-wild

Vulnerabilities and Exploits

CVE-2025-61882: Critical 0day in Oracle E-Business Suite exploited in-the-wild

Stephen Fewer's avatar
Christiaan Beek's avatar

Stephen Fewer, Christiaan Beek

Metasploit Wrap-Up 10/03/2025

Products and Tools

Metasploit Wrap-Up 10/03/2025

Christophe De La Fuente's avatar

Christophe De La Fuente

Microsoft 365 Direct Send Abuse

Detection and Response

Microsoft 365 Direct Send Abuse

Rapid7's avatar

Rapid7

Rapid7 Extends Command Platform Capability with Middle East Region Launch

Products and Tools

Rapid7 Extends Command Platform Capability with Middle East Region Launch

Rapid7's avatar

Rapid7

Microsoft SharePoint Zero-Day Exploitation: What Public Sector Leaders Should Know

Threat Research

Microsoft SharePoint Zero-Day Exploitation: What Public Sector Leaders Should Know

Rapid7 Labs's avatar

Rapid7 Labs

Metasploit Wrap-Up 09/26/2025

Products and Tools

Metasploit Wrap-Up 09/26/2025

Christopher Granleese's avatar

Christopher Granleese

CVE-2025-20333, CVE-2025-20362, CVE-2025-20363 - Multiple critical vulnerabilities affecting Cisco products

Vulnerabilities and Exploits

CVE-2025-20333, CVE-2025-20362, CVE-2025-20363 - Multiple critical vulnerabilities affecting Cisco products

Ryan Emmons's avatar

Ryan Emmons

CVE-2025-10184: OnePlus OxygenOS Telephony provider permission bypass (FIXED as of October 11, 2025)

Vulnerabilities and Exploits

CVE-2025-10184: OnePlus OxygenOS Telephony provider permission bypass (FIXED as of October 11, 2025)

Rapid7's avatar

Rapid7

Metasploit Weekly Wrap-Up 09/19/2025

Products and Tools

Metasploit Weekly Wrap-Up 09/19/2025

Spencer McIntyre's avatar

Spencer McIntyre

CVE-2025-10035 - Critical unauthenticated RCE in GoAnywhere MFT

Vulnerabilities and Exploits

CVE-2025-10035 - Critical unauthenticated RCE in GoAnywhere MFT

Stephen Fewer's avatar

Stephen Fewer

Rapid7 and Amazon Nova Are Revolutionizing AI in Cybersecurity

Artificial Intelligence

Rapid7 and Amazon Nova Are Revolutionizing AI in Cybersecurity

Rapid7's avatar

Rapid7

Staying Ahead of Attackers: What SOC Teams Are Doing Differently in 2025

Industry Trends

Staying Ahead of Attackers: What SOC Teams Are Doing Differently in 2025

Rapid7's avatar

Rapid7

Metasploit Wrap-Up 09/12/25

Products and Tools

Metasploit Wrap-Up 09/12/25

Jack Heysel's avatar

Jack Heysel

Rapid7 Q2 2025 Incident Response Findings

Detection and Response

Rapid7 Q2 2025 Incident Response Findings

Chris Boyd's avatar

Chris Boyd

Akira Ransomware Group Utilizing SonicWall Devices for Initial Access

Detection and Response

Akira Ransomware Group Utilizing SonicWall Devices for Initial Access

Rapid7's avatar

Rapid7

ANY.RUN and Rapid7 Threat Feed Integration

Products and Tools

ANY.RUN and Rapid7 Threat Feed Integration

Rapid7's avatar

Rapid7

Patch Tuesday - September 2025

Exposure Management

Patch Tuesday - September 2025

Adam Barnett's avatar

Adam Barnett