Rapid7 Cybersecurity Blog & Latest Vulnerability News

Products and Tools

Metasploit Wrap-Up 09/26/2025

Christopher Granleese

Vulnerabilities and Exploits

CVE-2025-20333, CVE-2025-20362, CVE-2025-20363 - Multiple critical vulnerabilities affecting Cisco products

Ryan Emmons

Vulnerabilities and Exploits

CVE-2025-10184: OnePlus OxygenOS Telephony provider permission bypass (FIXED as of October 11, 2025)

Rapid7

Products and Tools

Metasploit Weekly Wrap-Up 09/19/2025

Spencer McIntyre

Vulnerabilities and Exploits

CVE-2025-10035 - Critical unauthenticated RCE in GoAnywhere MFT

Stephen Fewer

Artificial Intelligence

Rapid7 and Amazon Nova Are Revolutionizing AI in Cybersecurity

Rapid7

Industry Trends

Staying Ahead of Attackers: What SOC Teams Are Doing Differently in 2025

Rapid7

Products and Tools

Metasploit Wrap-Up 09/12/25

Jack Heysel

Detection and Response

Rapid7 Q2 2025 Incident Response Findings

Chris Boyd

Detection and Response

Akira Ransomware Group Utilizing SonicWall Devices for Initial Access

Rapid7

Products and Tools

ANY.RUN and Rapid7 Threat Feed Integration

Rapid7

Exposure Management

Patch Tuesday - September 2025

Adam Barnett

Industry Trends

Cybersecurity Awareness Month 2025: How AI Is Reshaping Phishing, Ransomware, and Everyday Security

Rapid7

Products and Tools

Metasploit Weekly Wrap-Up 09/05/2025

Simon Janusz

Products and Tools

InsightAppSec: Time-based One-Time Passwords, MFA Automation Using Macros

Shane Queeney

Detection and Response

Safeguarding Salesforce: What You Need to Know About the OAuth Token Compromise

Rapid7

Detection and Response

New Infographic Showcases How Rapid7 MDR Stops Threats Fast

Rapid7

Threat Research

An Earth-Shattering Kaboom: Bringing a Physical ICS Penetration Testing Environment to Life (Part 2)

Anna Katarina Quinn

Vulnerabilities and Exploits

Flashrom to Hexedit to Root: DEF CON 33 IoT Village Exercise

Rapid7

Products and Tools

Metasploit Weekly Wrap-Up 08/28/2025

Alan David Foster

Exposure Management

Rapid7 Named a Leader in the 2025 IDC MarketScape for Exposure Management

Rapid7

The Rapid7 Blog:
Your Signal in the Security Noise

Featured posts

Rapid7's Q3 2025 Threat Landscape Report

The End of Legacy SIEM as we Know it

A New Meeting Invite, or a New Attack Vector?

Rapid7's Q3 2025 Threat Landscape Report

The End of Legacy SIEM as we Know it

A New Meeting Invite, or a New Attack Vector?

Categories

Popular Tags

Metasploit Wrap-Up 09/26/2025

CVE-2025-20333, CVE-2025-20362, CVE-2025-20363 - Multiple critical vulnerabilities affecting Cisco products

CVE-2025-10184: OnePlus OxygenOS Telephony provider permission bypass (FIXED as of October 11, 2025)

Metasploit Weekly Wrap-Up 09/19/2025

CVE-2025-10035 - Critical unauthenticated RCE in GoAnywhere MFT

Rapid7 and Amazon Nova Are Revolutionizing AI in Cybersecurity

Staying Ahead of Attackers: What SOC Teams Are Doing Differently in 2025

Metasploit Wrap-Up 09/12/25

Rapid7 Q2 2025 Incident Response Findings

Akira Ransomware Group Utilizing SonicWall Devices for Initial Access

ANY.RUN and Rapid7 Threat Feed Integration

Patch Tuesday - September 2025

Cybersecurity Awareness Month 2025: How AI Is Reshaping Phishing, Ransomware, and Everyday Security

Metasploit Weekly Wrap-Up 09/05/2025

InsightAppSec: Time-based One-Time Passwords, MFA Automation Using Macros

Safeguarding Salesforce: What You Need to Know About the OAuth Token Compromise

New Infographic Showcases How Rapid7 MDR Stops Threats Fast

An Earth-Shattering Kaboom: Bringing a Physical ICS Penetration Testing Environment to Life (Part 2)

Flashrom to Hexedit to Root: DEF CON 33 IoT Village Exercise

Metasploit Weekly Wrap-Up 08/28/2025

Rapid7 Named a Leader in the 2025 IDC MarketScape for Exposure Management

The Rapid7 Blog:Your Signal in the Security Noise

Featured posts

Rapid7's Q3 2025 Threat Landscape Report

The End of Legacy SIEM as we Know it

A New Meeting Invite, or a New Attack Vector?

Rapid7's Q3 2025 Threat Landscape Report

The End of Legacy SIEM as we Know it

A New Meeting Invite, or a New Attack Vector?

Categories

Categories

Popular Tags

Popular Tags

Metasploit Wrap-Up 09/26/2025

CVE-2025-20333, CVE-2025-20362, CVE-2025-20363 - Multiple critical vulnerabilities affecting Cisco products

CVE-2025-10184: OnePlus OxygenOS Telephony provider permission bypass (FIXED as of October 11, 2025)

Metasploit Weekly Wrap-Up 09/19/2025

CVE-2025-10035 - Critical unauthenticated RCE in GoAnywhere MFT

Rapid7 and Amazon Nova Are Revolutionizing AI in Cybersecurity

Staying Ahead of Attackers: What SOC Teams Are Doing Differently in 2025

Metasploit Wrap-Up 09/12/25

Rapid7 Q2 2025 Incident Response Findings

Akira Ransomware Group Utilizing SonicWall Devices for Initial Access

ANY.RUN and Rapid7 Threat Feed Integration

Patch Tuesday - September 2025

Cybersecurity Awareness Month 2025: How AI Is Reshaping Phishing, Ransomware, and Everyday Security

Metasploit Weekly Wrap-Up 09/05/2025

InsightAppSec: Time-based One-Time Passwords, MFA Automation Using Macros

Safeguarding Salesforce: What You Need to Know About the OAuth Token Compromise

New Infographic Showcases How Rapid7 MDR Stops Threats Fast

An Earth-Shattering Kaboom: Bringing a Physical ICS Penetration Testing Environment to Life (Part 2)

Flashrom to Hexedit to Root: DEF CON 33 IoT Village Exercise

Metasploit Weekly Wrap-Up 08/28/2025

Rapid7 Named a Leader in the 2025 IDC MarketScape for Exposure Management

The Rapid7 Blog:
Your Signal in the Security Noise