Rapid7

The Rapid7 Blog:
Your Signal in the Security Noise

Insights, stories, and guidance from our global security and research teams.

Weekly security updates — no spam. Privacy Policy.

Featured posts

How Modern SOCs are Fighting against Alert Fatigue

How Modern SOCs are Fighting against Alert Fatigue

Read post
Trojan Source CVE-2021-42572: No Panic Necessary

Vulnerabilities and Exploits

Trojan Source CVE-2021-42572: No Panic Necessary

boB Rudis's avatar

boB Rudis

Hands-On IoT Hacking: Rapid7 at DefCon 29 IoT Village, Part 3

Threat Research

Hands-On IoT Hacking: Rapid7 at DefCon 29 IoT Village, Part 3

Deral Heiland's avatar

Deral Heiland

Building Threat-Informed Defenses: Rapid7 Experts Share Their Thoughts on MITRE ATT&CK

Security Operations

Building Threat-Informed Defenses: Rapid7 Experts Share Their Thoughts on MITRE ATT&CK

Margaret Wei's avatar

Margaret Wei

InsightVM Scan Diagnostics: Troubleshooting Credential Issues for Authenticated Scanning

Products and Tools

InsightVM Scan Diagnostics: Troubleshooting Credential Issues for Authenticated Scanning

Greg Wiseman's avatar

Greg Wiseman

A Matter of Perspective: Agent-Based and Agentless Approaches to Cloud Security, Part 2

Cloud and Devops Security

A Matter of Perspective: Agent-Based and Agentless Approaches to Cloud Security, Part 2

Amit Bawer's avatar

Amit Bawer

Solving the Access Goldilocks Problem: RBAC for InsightAppSec Is Here

Products and Tools

Solving the Access Goldilocks Problem: RBAC for InsightAppSec Is Here

Tom Caiazza's avatar

Tom Caiazza

GitLab Unauthenticated Remote Code Execution CVE-2021-22205 Exploited in the Wild

Exposure Management

GitLab Unauthenticated Remote Code Execution CVE-2021-22205 Exploited in the Wild

Jake Baines's avatar

Jake Baines

Metasploit Wrap-Up: Oct. 29, 2021

Exposure Management

Metasploit Wrap-Up: Oct. 29, 2021

Grant Willcox's avatar

Grant Willcox

Infostealer Malware Masquerades as Windows Application

Threat Research

Infostealer Malware Masquerades as Windows Application

Andrew Iwamaye's avatar

Andrew Iwamaye

Hands-On IoT Hacking: Rapid7 at DefCon IoT Village, Part 2

Detection and Response

Hands-On IoT Hacking: Rapid7 at DefCon IoT Village, Part 2

Deral Heiland's avatar

Deral Heiland

Rapid7 Announces Tampa Office Opening

Rapid7 Blog

Rapid7 Announces Tampa Office Opening

Rapid7's avatar

Rapid7

NPM Library (ua-parser-js) Hijacked: What You Need to Know

Vulnerabilities and Exploits

NPM Library (ua-parser-js) Hijacked: What You Need to Know

Glenn Thorpe's avatar

Glenn Thorpe

Recog: Data Rules Everything Around Me

Industry Trends

Recog: Data Rules Everything Around Me

Matthew Kienow's avatar

Matthew Kienow

2022 Planning: Designing Effective Strategies to Manage Supply Chain Risk

Exposure Management

2022 Planning: Designing Effective Strategies to Manage Supply Chain Risk

Jesse Mack's avatar

Jesse Mack

Metasploit Wrap-Up: 10/22/21

Exposure Management

Metasploit Wrap-Up: 10/22/21

Dean Welch's avatar

Dean Welch

Hands-On IoT Hacking: Rapid7 at DefCon IoT Village, Part 1

Detection and Response

Hands-On IoT Hacking: Rapid7 at DefCon IoT Village, Part 1

Deral Heiland's avatar

Deral Heiland

A Matter of Perspective: Agent-Based and Agentless Approaches to Cloud Security, Part 1

Products and Tools

A Matter of Perspective: Agent-Based and Agentless Approaches to Cloud Security, Part 1

Amit Bawer's avatar

Amit Bawer

OWASP Top 10 Deep Dive: Injection and Stack Traces From a Hacker's Perspective

Exposure Management

OWASP Top 10 Deep Dive: Injection and Stack Traces From a Hacker's Perspective

Julius Callahan's avatar

Julius Callahan

Passwordless Network Scanning: Same Insights, Less Risk

Exposure Management

Passwordless Network Scanning: Same Insights, Less Risk

Jimmy Cancilla's avatar

Jimmy Cancilla

Metasploit Wrap-Up 10/15/21

Exposure Management

Metasploit Wrap-Up 10/15/21

Brendan Watters's avatar

Brendan Watters

4 Simple Steps for an Effective Threat Intelligence Program

Detection and Response

4 Simple Steps for an Effective Threat Intelligence Program

Alon Arvatz's avatar

Alon Arvatz