The Rapid7 Blog:
Your Signal in the Security Noise

Insights, stories, and guidance from our global security and research teams.

Featured posts

Introducing Rapid7 MDR for Microsoft

The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit

What’s New in Rapid7 Products & Services?

Introducing Rapid7 MDR for Microsoft

The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit

What’s New in Rapid7 Products & Services?

3628 Results

New InsightVM Dashboard Helps You Discover Significant Changes in Your Environment from the Past 30 Days

Exposure Management

New InsightVM Dashboard Helps You Discover Significant Changes in Your Environment from the Past 30 Days

Dane Grace

CVE-2021-22652: Advantech iView Missing Authentication RCE (FIXED)

Exposure Management

CVE-2021-22652: Advantech iView Missing Authentication RCE (FIXED)

Tod Beardsley

SOAR Tools: What to Look for When Investing in Security Automation Tech

Security Operations

SOAR Tools: What to Look for When Investing in Security Automation Tech

Aaron Wells

Patch Tuesday - February 2021

Detection and Response

Patch Tuesday - February 2021

Greg Wiseman

Metasploit Wrap-Up: Feb. 5, 2021

Exposure Management

Metasploit Wrap-Up: Feb. 5, 2021

Christophe De La Fuente

Cisco Patches Recently Disclosed "sudo" Vulnerability (CVE-2021-3156) in Multiple Products

Exposure Management

Cisco Patches Recently Disclosed "sudo" Vulnerability (CVE-2021-3156) in Multiple Products

boB Rudis

SonicWall SNWLID-2021-0001 Zero-Day and SolarWinds’ 2021 CVE Trifecta: What You Need to Know

Threat Research

SonicWall SNWLID-2021-0001 Zero-Day and SolarWinds’ 2021 CVE Trifecta: What You Need to Know

boB Rudis

Vulnerability Scanning With the Metasploit Remote Check Service (Beta Release)

Products and Tools

Vulnerability Scanning With the Metasploit Remote Check Service (Beta Release)

Adam McClenaghan

Addressing the OT-IT Risk and Asset Inventory Gap

Security Operations

Addressing the OT-IT Risk and Asset Inventory Gap

Ben Garber

Rapid7 Acquires Leading Kubernetes Security Provider, Alcide

Industry Trends

Rapid7 Acquires Leading Kubernetes Security Provider, Alcide

Brian Johnson

Metasploit Wrap-Up: 1/29/21

Exposure Management

Metasploit Wrap-Up: 1/29/21

Louis Sato

NICER Protocol Deep Dive: Internet Exposure of HTTP and HTTPS

Threat Research

NICER Protocol Deep Dive: Internet Exposure of HTTP and HTTPS

Tod Beardsley

Upcoming Rapid7 Webcast: How Far Does Your VRM Strategy Go?

Products and Tools

Upcoming Rapid7 Webcast: How Far Does Your VRM Strategy Go?

Rapid7

State-Sponsored Threat Actors Target Security Researchers

Vulnerabilities and Exploits

State-Sponsored Threat Actors Target Security Researchers

boB Rudis

Metasploit Wrap-Up: 1/22/21

Exposure Management

Metasploit Wrap-Up: 1/22/21

Dean Welch

NICER Protocol Deep Dive: Internet Exposure of NTP

Threat Research

NICER Protocol Deep Dive: Internet Exposure of NTP

Tod Beardsley

Principles for personal information security legislation

Industry Trends

Principles for personal information security legislation

Harley Geiger

You Can Now Buy (And Renew) Five More Rapid7 Products Through AWS Marketplace

Cloud and Devops Security

You Can Now Buy (And Renew) Five More Rapid7 Products Through AWS Marketplace

Aaron Sawitsky

InsightIDR: 2020 Highlights and What’s Ahead in 2021

Detection and Response

InsightIDR: 2020 Highlights and What’s Ahead in 2021

Margaret Wei

Metasploit Wrap-Up: 1/15/21

Products and Tools

Metasploit Wrap-Up: 1/15/21

Alan David Foster

NICER Protocol Deep Dive: Internet Exposure of DNS-over-TLS

Threat Research

NICER Protocol Deep Dive: Internet Exposure of DNS-over-TLS

Tod Beardsley