Rapid7 Cybersecurity Blog & Latest Vulnerability News

Detection and Response

Microsoft 365 Direct Send Abuse

Rapid7

Products and Tools

Rapid7 Extends Command Platform Capability with Middle East Region Launch

Rapid7

Threat Research

Microsoft SharePoint Zero-Day Exploitation: What Public Sector Leaders Should Know

Rapid7 Labs

Products and Tools

Metasploit Wrap-Up 09/26/2025

Christopher Granleese

Vulnerabilities and Exploits

CVE-2025-20333, CVE-2025-20362, CVE-2025-20363 - Multiple critical vulnerabilities affecting Cisco products

Ryan Emmons

Vulnerabilities and Exploits

CVE-2025-10184: OnePlus OxygenOS Telephony provider permission bypass (FIXED as of October 11, 2025)

Rapid7

Products and Tools

Metasploit Weekly Wrap-Up 09/19/2025

Spencer McIntyre

Vulnerabilities and Exploits

CVE-2025-10035 - Critical unauthenticated RCE in GoAnywhere MFT

Stephen Fewer

Artificial Intelligence

Rapid7 and Amazon Nova Are Revolutionizing AI in Cybersecurity

Rapid7

Industry Trends

Staying Ahead of Attackers: What SOC Teams Are Doing Differently in 2025

Rapid7

Products and Tools

Metasploit Wrap-Up 09/12/25

Jack Heysel

Detection and Response

Rapid7 Q2 2025 Incident Response Findings

Chris Boyd

Detection and Response

Akira Ransomware Group Utilizing SonicWall Devices for Initial Access

Rapid7

Products and Tools

ANY.RUN and Rapid7 Threat Feed Integration

Rapid7

Exposure Management

Patch Tuesday - September 2025

Adam Barnett

Industry Trends

Cybersecurity Awareness Month 2025: How AI Is Reshaping Phishing, Ransomware, and Everyday Security

Rapid7

Products and Tools

Metasploit Weekly Wrap-Up 09/05/2025

Simon Janusz

Products and Tools

InsightAppSec: Time-based One-Time Passwords, MFA Automation Using Macros

Shane Queeney

Detection and Response

Safeguarding Salesforce: What You Need to Know About the OAuth Token Compromise

Rapid7

Detection and Response

New Infographic Showcases How Rapid7 MDR Stops Threats Fast

Rapid7

Threat Research

An Earth-Shattering Kaboom: Bringing a Physical ICS Penetration Testing Environment to Life (Part 2)

Anna Katarina Quinn

The Rapid7 Blog:
Your Signal in the Security Noise

Featured posts

Introducing Rapid7 MDR for Microsoft

The End of Legacy SIEM as we Know it

What’s New in Rapid7 Products & Services?

Introducing Rapid7 MDR for Microsoft

The End of Legacy SIEM as we Know it

What’s New in Rapid7 Products & Services?

Categories

Popular Tags

Microsoft 365 Direct Send Abuse

Rapid7 Extends Command Platform Capability with Middle East Region Launch

Microsoft SharePoint Zero-Day Exploitation: What Public Sector Leaders Should Know

Metasploit Wrap-Up 09/26/2025

CVE-2025-20333, CVE-2025-20362, CVE-2025-20363 - Multiple critical vulnerabilities affecting Cisco products

CVE-2025-10184: OnePlus OxygenOS Telephony provider permission bypass (FIXED as of October 11, 2025)

Metasploit Weekly Wrap-Up 09/19/2025

CVE-2025-10035 - Critical unauthenticated RCE in GoAnywhere MFT

Rapid7 and Amazon Nova Are Revolutionizing AI in Cybersecurity

Staying Ahead of Attackers: What SOC Teams Are Doing Differently in 2025

Metasploit Wrap-Up 09/12/25

Rapid7 Q2 2025 Incident Response Findings

Akira Ransomware Group Utilizing SonicWall Devices for Initial Access

ANY.RUN and Rapid7 Threat Feed Integration

Patch Tuesday - September 2025

Cybersecurity Awareness Month 2025: How AI Is Reshaping Phishing, Ransomware, and Everyday Security

Metasploit Weekly Wrap-Up 09/05/2025

InsightAppSec: Time-based One-Time Passwords, MFA Automation Using Macros

Safeguarding Salesforce: What You Need to Know About the OAuth Token Compromise

New Infographic Showcases How Rapid7 MDR Stops Threats Fast

An Earth-Shattering Kaboom: Bringing a Physical ICS Penetration Testing Environment to Life (Part 2)

The Rapid7 Blog:Your Signal in the Security Noise

Featured posts

Introducing Rapid7 MDR for Microsoft

The End of Legacy SIEM as we Know it

What’s New in Rapid7 Products & Services?

Introducing Rapid7 MDR for Microsoft

The End of Legacy SIEM as we Know it

What’s New in Rapid7 Products & Services?

Categories

Categories

Popular Tags

Popular Tags

Microsoft 365 Direct Send Abuse

Rapid7 Extends Command Platform Capability with Middle East Region Launch

Microsoft SharePoint Zero-Day Exploitation: What Public Sector Leaders Should Know

Metasploit Wrap-Up 09/26/2025

CVE-2025-20333, CVE-2025-20362, CVE-2025-20363 - Multiple critical vulnerabilities affecting Cisco products

CVE-2025-10184: OnePlus OxygenOS Telephony provider permission bypass (FIXED as of October 11, 2025)

Metasploit Weekly Wrap-Up 09/19/2025

CVE-2025-10035 - Critical unauthenticated RCE in GoAnywhere MFT

Rapid7 and Amazon Nova Are Revolutionizing AI in Cybersecurity

Staying Ahead of Attackers: What SOC Teams Are Doing Differently in 2025

Metasploit Wrap-Up 09/12/25

Rapid7 Q2 2025 Incident Response Findings

Akira Ransomware Group Utilizing SonicWall Devices for Initial Access

ANY.RUN and Rapid7 Threat Feed Integration

Patch Tuesday - September 2025

Cybersecurity Awareness Month 2025: How AI Is Reshaping Phishing, Ransomware, and Everyday Security

Metasploit Weekly Wrap-Up 09/05/2025

InsightAppSec: Time-based One-Time Passwords, MFA Automation Using Macros

Safeguarding Salesforce: What You Need to Know About the OAuth Token Compromise

New Infographic Showcases How Rapid7 MDR Stops Threats Fast

An Earth-Shattering Kaboom: Bringing a Physical ICS Penetration Testing Environment to Life (Part 2)

The Rapid7 Blog:
Your Signal in the Security Noise