The Rapid7 Blog:
Your Signal in the Security Noise

Insights, stories, and guidance from our global security and research teams.

Weekly security updates — no spam. Privacy Policy.

Featured posts

Introducing Rapid7 MDR for Microsoft

Introducing Rapid7 MDR for Microsoft

Read post
The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit

The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit

Read post
What’s New in Rapid7 Products & Services?

What’s New in Rapid7 Products & Services?

Read post
Open-Source Security: Getting to the Root of the Problem

Threat Research

Open-Source Security: Getting to the Root of the Problem

Matthew Kienow's avatar

Matthew Kienow

Active Exploitation of VMware Horizon Servers

Vulnerabilities and Exploits

Active Exploitation of VMware Horizon Servers

Glenn Thorpe's avatar

Glenn Thorpe

Metrics That Matter and Curtailing the Cobra Effect

Security Operations

Metrics That Matter and Curtailing the Cobra Effect

Curt Barnard's avatar

Curt Barnard

Metasploit Weekly Wrap-Up: 1/14/22

Products and Tools

Metasploit Weekly Wrap-Up: 1/14/22

Simon Janusz's avatar

Simon Janusz

7 Rapid Questions: Stephen Donnelly

Rapid7 Blog

7 Rapid Questions: Stephen Donnelly

Rapid7's avatar

Rapid7

Being Naughty to See Who Was Nice: Machine Learning Attacks on Santa’s List

Threat Research

Being Naughty to See Who Was Nice: Machine Learning Attacks on Santa’s List

Erick Galinkin's avatar

Erick Galinkin

Evaluating MDR Vendors: A Pocket Buyer's Guide

Detection and Response

Evaluating MDR Vendors: A Pocket Buyer's Guide

Mikayla Wyman's avatar

Mikayla Wyman

A Quick Look at CES 2022

Threat Research

A Quick Look at CES 2022

Deral Heiland's avatar

Deral Heiland

A December to Remember — Or, How We Improved InsightAppSec in Q4 in the Midst of Log4Shell

Products and Tools

A December to Remember — Or, How We Improved InsightAppSec in Q4 in the Midst of Log4Shell

Tom Caiazza's avatar

Tom Caiazza

Demystifying XDR: How Humans and Machines Join Forces in Threat Response

Detection and Response

Demystifying XDR: How Humans and Machines Join Forces in Threat Response

Jesse Mack's avatar

Jesse Mack

Patch Tuesday - January 2022

Exposure Management

Patch Tuesday - January 2022

Greg Wiseman's avatar

Greg Wiseman

CVE-2021-20038..42: SonicWall SMA 100 Multiple Vulnerabilities (FIXED)

Exposure Management

CVE-2021-20038..42: SonicWall SMA 100 Multiple Vulnerabilities (FIXED)

Jake Baines's avatar

Jake Baines

The 2021 Naughty and Nice Lists: Cybersecurity Edition

Industry Trends

The 2021 Naughty and Nice Lists: Cybersecurity Edition

Jesse Mack's avatar

Jesse Mack

Log4Shell Strategic Response: 5 Practices for Vulnerability Management at Scale

Exposure Management

Log4Shell Strategic Response: 5 Practices for Vulnerability Management at Scale

Steve Divine's avatar

Steve Divine

Metasploit Wrap-Up: Jan. 7, 2022

Exposure Management

Metasploit Wrap-Up: Jan. 7, 2022

Erran Carey's avatar

Erran Carey

What's New in Threat Intelligence: 2021 Year in Review

Threat Research

What's New in Threat Intelligence: 2021 Year in Review

Stacy Moran's avatar

Stacy Moran

What's New in InsightIDR: Q4 2021 in Review

Products and Tools

What's New in InsightIDR: Q4 2021 in Review

Margaret Wei's avatar

Margaret Wei

2022 Cybersecurity Predictions: The Experts Clear Off the Crystal Ball

Industry Trends

2022 Cybersecurity Predictions: The Experts Clear Off the Crystal Ball

Jesse Mack's avatar

Jesse Mack

Rapid7 2021 Wrap-Up: Highlights From a Year of Empowering the Protectors

Industry Trends

Rapid7 2021 Wrap-Up: Highlights From a Year of Empowering the Protectors

Rapid7's avatar

Rapid7

Metasploit 2021 Annual Wrap-Up

Products and Tools

Metasploit 2021 Annual Wrap-Up

Spencer McIntyre's avatar

Spencer McIntyre

5 Security Projects That Are Giving Back

Industry Trends

5 Security Projects That Are Giving Back

Jacob Roundy's avatar

Jacob Roundy