Rapid7 Cybersecurity Blog & Latest Vulnerability News

Industry Trends

The Business of Cybercrime: Raj Samani on Access, Ransomware, and What Comes Next

Rapid7

Industry Trends

What Recent Cyber Attacks Reveal About Readiness in 2025

Emma Burdett

Vulnerabilities and Exploits

CVE-2025-61882: Critical 0day in Oracle E-Business Suite exploited in-the-wild

Stephen Fewer, Christiaan Beek

Products and Tools

Metasploit Wrap-Up 10/03/2025

Christophe De La Fuente

Detection and Response

Microsoft 365 Direct Send Abuse

Rapid7

Products and Tools

Rapid7 Extends Command Platform Capability with Middle East Region Launch

Rapid7

Threat Research

Microsoft SharePoint Zero-Day Exploitation: What Public Sector Leaders Should Know

Rapid7 Labs

Products and Tools

Metasploit Wrap-Up 09/26/2025

Christopher Granleese

Vulnerabilities and Exploits

CVE-2025-20333, CVE-2025-20362, CVE-2025-20363 - Multiple critical vulnerabilities affecting Cisco products

Ryan Emmons

Vulnerabilities and Exploits

CVE-2025-10184: OnePlus OxygenOS Telephony provider permission bypass (FIXED as of October 11, 2025)

Rapid7

Products and Tools

Metasploit Weekly Wrap-Up 09/19/2025

Spencer McIntyre

Vulnerabilities and Exploits

CVE-2025-10035 - Critical unauthenticated RCE in GoAnywhere MFT

Stephen Fewer

Artificial Intelligence

Rapid7 and Amazon Nova Are Revolutionizing AI in Cybersecurity

Rapid7

Industry Trends

Staying Ahead of Attackers: What SOC Teams Are Doing Differently in 2025

Rapid7

Products and Tools

Metasploit Wrap-Up 09/12/25

Jack Heysel

Detection and Response

Rapid7 Q2 2025 Incident Response Findings

Chris Boyd

Detection and Response

Akira Ransomware Group Utilizing SonicWall Devices for Initial Access

Rapid7

Products and Tools

ANY.RUN and Rapid7 Threat Feed Integration

Rapid7

Exposure Management

Patch Tuesday - September 2025

Adam Barnett

Industry Trends

Cybersecurity Awareness Month 2025: How AI Is Reshaping Phishing, Ransomware, and Everyday Security

Rapid7

Products and Tools

Metasploit Weekly Wrap-Up 09/05/2025

Simon Janusz

The Rapid7 Blog:
Your Signal in the Security Noise

Featured posts

Introducing Rapid7 MDR for Microsoft

The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit

What’s New in Rapid7 Products & Services?

Introducing Rapid7 MDR for Microsoft

The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit

What’s New in Rapid7 Products & Services?

Categories

Popular Tags

The Business of Cybercrime: Raj Samani on Access, Ransomware, and What Comes Next

What Recent Cyber Attacks Reveal About Readiness in 2025

CVE-2025-61882: Critical 0day in Oracle E-Business Suite exploited in-the-wild

Metasploit Wrap-Up 10/03/2025

Microsoft 365 Direct Send Abuse

Rapid7 Extends Command Platform Capability with Middle East Region Launch

Microsoft SharePoint Zero-Day Exploitation: What Public Sector Leaders Should Know

Metasploit Wrap-Up 09/26/2025

CVE-2025-20333, CVE-2025-20362, CVE-2025-20363 - Multiple critical vulnerabilities affecting Cisco products

CVE-2025-10184: OnePlus OxygenOS Telephony provider permission bypass (FIXED as of October 11, 2025)

Metasploit Weekly Wrap-Up 09/19/2025

CVE-2025-10035 - Critical unauthenticated RCE in GoAnywhere MFT

Rapid7 and Amazon Nova Are Revolutionizing AI in Cybersecurity

Staying Ahead of Attackers: What SOC Teams Are Doing Differently in 2025

Metasploit Wrap-Up 09/12/25

Rapid7 Q2 2025 Incident Response Findings

Akira Ransomware Group Utilizing SonicWall Devices for Initial Access

ANY.RUN and Rapid7 Threat Feed Integration

Patch Tuesday - September 2025

Cybersecurity Awareness Month 2025: How AI Is Reshaping Phishing, Ransomware, and Everyday Security

Metasploit Weekly Wrap-Up 09/05/2025

The Rapid7 Blog:Your Signal in the Security Noise

Featured posts

Introducing Rapid7 MDR for Microsoft

The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit

What’s New in Rapid7 Products & Services?

Introducing Rapid7 MDR for Microsoft

The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit

What’s New in Rapid7 Products & Services?

Categories

Categories

Popular Tags

Popular Tags

The Business of Cybercrime: Raj Samani on Access, Ransomware, and What Comes Next

What Recent Cyber Attacks Reveal About Readiness in 2025

CVE-2025-61882: Critical 0day in Oracle E-Business Suite exploited in-the-wild

Metasploit Wrap-Up 10/03/2025

Microsoft 365 Direct Send Abuse

Rapid7 Extends Command Platform Capability with Middle East Region Launch

Microsoft SharePoint Zero-Day Exploitation: What Public Sector Leaders Should Know

Metasploit Wrap-Up 09/26/2025

CVE-2025-20333, CVE-2025-20362, CVE-2025-20363 - Multiple critical vulnerabilities affecting Cisco products

CVE-2025-10184: OnePlus OxygenOS Telephony provider permission bypass (FIXED as of October 11, 2025)

Metasploit Weekly Wrap-Up 09/19/2025

CVE-2025-10035 - Critical unauthenticated RCE in GoAnywhere MFT

Rapid7 and Amazon Nova Are Revolutionizing AI in Cybersecurity

Staying Ahead of Attackers: What SOC Teams Are Doing Differently in 2025

Metasploit Wrap-Up 09/12/25

Rapid7 Q2 2025 Incident Response Findings

Akira Ransomware Group Utilizing SonicWall Devices for Initial Access

ANY.RUN and Rapid7 Threat Feed Integration

Patch Tuesday - September 2025

Cybersecurity Awareness Month 2025: How AI Is Reshaping Phishing, Ransomware, and Everyday Security

Metasploit Weekly Wrap-Up 09/05/2025

The Rapid7 Blog:
Your Signal in the Security Noise