Rapid7 Cybersecurity Blog & Latest Vulnerability News

Exposure Management

Patch Tuesday - October 2025

Adam Barnett

Culture

Cybersecurity Awareness Month 2025: Building a Cybersecurity Culture That Lasts

Emma Burdett

Products and Tools

Metasploit Wrap Up 10/09/2025

Diego Ledda

Products and Tools

Identifying and Mitigating Potential Velociraptor Abuse

Christiaan Beek

Threat Research

Inside Russian Market: Uncovering the Botnet Empire

Alexandra Blia, Maor Weinberger

Threat Research

Crimson Collective: A New Threat Group Observed Operating in the Cloud

Jakub Zvarik

Industry Trends

The Business of Cybercrime: Raj Samani on Access, Ransomware, and What Comes Next

Rapid7

Industry Trends

What Recent Cyber Attacks Reveal About Readiness in 2025

Emma Burdett

Vulnerabilities and Exploits

CVE-2025-61882: Critical 0day in Oracle E-Business Suite exploited in-the-wild

Stephen Fewer, Christiaan Beek

Products and Tools

Metasploit Wrap-Up 10/03/2025

Christophe De La Fuente

Detection and Response

Microsoft 365 Direct Send Abuse

Rapid7

Products and Tools

Rapid7 Extends Command Platform Capability with Middle East Region Launch

Rapid7

Threat Research

Microsoft SharePoint Zero-Day Exploitation: What Public Sector Leaders Should Know

Rapid7 Labs

Products and Tools

Metasploit Wrap-Up 09/26/2025

Christopher Granleese

Vulnerabilities and Exploits

CVE-2025-20333, CVE-2025-20362, CVE-2025-20363 - Multiple critical vulnerabilities affecting Cisco products

Ryan Emmons

Vulnerabilities and Exploits

CVE-2025-10184: OnePlus OxygenOS Telephony provider permission bypass (FIXED as of October 11, 2025)

Rapid7

Products and Tools

Metasploit Weekly Wrap-Up 09/19/2025

Spencer McIntyre

Vulnerabilities and Exploits

CVE-2025-10035 - Critical unauthenticated RCE in GoAnywhere MFT

Stephen Fewer

Artificial Intelligence

Rapid7 and Amazon Nova Are Revolutionizing AI in Cybersecurity

Rapid7

Industry Trends

Staying Ahead of Attackers: What SOC Teams Are Doing Differently in 2025

Rapid7

Products and Tools

Metasploit Wrap-Up 09/12/25

Jack Heysel

The Rapid7 Blog:
Your Signal in the Security Noise

Featured posts

Introducing Rapid7 MDR for Microsoft

The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit

What’s New in Rapid7 Products & Services?

Introducing Rapid7 MDR for Microsoft

The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit

What’s New in Rapid7 Products & Services?

Categories

Popular Tags

Patch Tuesday - October 2025

Cybersecurity Awareness Month 2025: Building a Cybersecurity Culture That Lasts

Metasploit Wrap Up 10/09/2025

Identifying and Mitigating Potential Velociraptor Abuse

Inside Russian Market: Uncovering the Botnet Empire

Crimson Collective: A New Threat Group Observed Operating in the Cloud

The Business of Cybercrime: Raj Samani on Access, Ransomware, and What Comes Next

What Recent Cyber Attacks Reveal About Readiness in 2025

CVE-2025-61882: Critical 0day in Oracle E-Business Suite exploited in-the-wild

Metasploit Wrap-Up 10/03/2025

Microsoft 365 Direct Send Abuse

Rapid7 Extends Command Platform Capability with Middle East Region Launch

Microsoft SharePoint Zero-Day Exploitation: What Public Sector Leaders Should Know

Metasploit Wrap-Up 09/26/2025

CVE-2025-20333, CVE-2025-20362, CVE-2025-20363 - Multiple critical vulnerabilities affecting Cisco products

CVE-2025-10184: OnePlus OxygenOS Telephony provider permission bypass (FIXED as of October 11, 2025)

Metasploit Weekly Wrap-Up 09/19/2025

CVE-2025-10035 - Critical unauthenticated RCE in GoAnywhere MFT

Rapid7 and Amazon Nova Are Revolutionizing AI in Cybersecurity

Staying Ahead of Attackers: What SOC Teams Are Doing Differently in 2025

Metasploit Wrap-Up 09/12/25

The Rapid7 Blog:Your Signal in the Security Noise

Featured posts

Introducing Rapid7 MDR for Microsoft

The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit

What’s New in Rapid7 Products & Services?

Introducing Rapid7 MDR for Microsoft

The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit

What’s New in Rapid7 Products & Services?

Categories

Categories

Popular Tags

Popular Tags

Patch Tuesday - October 2025

Cybersecurity Awareness Month 2025: Building a Cybersecurity Culture That Lasts

Metasploit Wrap Up 10/09/2025

Identifying and Mitigating Potential Velociraptor Abuse

Inside Russian Market: Uncovering the Botnet Empire

Crimson Collective: A New Threat Group Observed Operating in the Cloud

The Business of Cybercrime: Raj Samani on Access, Ransomware, and What Comes Next

What Recent Cyber Attacks Reveal About Readiness in 2025

CVE-2025-61882: Critical 0day in Oracle E-Business Suite exploited in-the-wild

Metasploit Wrap-Up 10/03/2025

Microsoft 365 Direct Send Abuse

Rapid7 Extends Command Platform Capability with Middle East Region Launch

Microsoft SharePoint Zero-Day Exploitation: What Public Sector Leaders Should Know

Metasploit Wrap-Up 09/26/2025

CVE-2025-20333, CVE-2025-20362, CVE-2025-20363 - Multiple critical vulnerabilities affecting Cisco products

CVE-2025-10184: OnePlus OxygenOS Telephony provider permission bypass (FIXED as of October 11, 2025)

Metasploit Weekly Wrap-Up 09/19/2025

CVE-2025-10035 - Critical unauthenticated RCE in GoAnywhere MFT

Rapid7 and Amazon Nova Are Revolutionizing AI in Cybersecurity

Staying Ahead of Attackers: What SOC Teams Are Doing Differently in 2025

Metasploit Wrap-Up 09/12/25

The Rapid7 Blog:
Your Signal in the Security Noise