The Rapid7 Blog:
Your Signal in the Security Noise

Insights, stories, and guidance from our global security and research teams.

Featured posts

Introducing Rapid7 MDR for Microsoft

BPFdoor in Telecom Networks: Sleeper Cells in the Backbone

How Modern SOCs are Fighting against Alert Fatigue

Introducing Rapid7 MDR for Microsoft

BPFdoor in Telecom Networks: Sleeper Cells in the Backbone

How Modern SOCs are Fighting against Alert Fatigue

3723 Results

Building a Holistic VRM Strategy That Includes the Web Application Layer

Products and Tools

Building a Holistic VRM Strategy That Includes the Web Application Layer

Aaron Wells

Multiple Unauthenticated Remote Code Control and Execution Vulnerabilities in Multiple Cisco Products

Vulnerabilities and Exploits

Multiple Unauthenticated Remote Code Control and Execution Vulnerabilities in Multiple Cisco Products

boB Rudis

VMware vCenter Server CVE-2021-21972 Remote Code Execution Vulnerability: What You Need to Know

Exposure Management

VMware vCenter Server CVE-2021-21972 Remote Code Execution Vulnerability: What You Need to Know

boB Rudis

Software Engineering, Vulnerability and Risk Management: Revolutionizing the Security Landscape at Rapid7

Rapid7 Blog

Software Engineering, Vulnerability and Risk Management: Revolutionizing the Security Landscape at Rapid7

Rapid7

How to Combat Alert Fatigue With Cloud-Based SIEM Tools

Detection and Response

How to Combat Alert Fatigue With Cloud-Based SIEM Tools

Margaret Wei

Metasploit Wrap-Up: 2/19/21

Products and Tools

Metasploit Wrap-Up: 2/19/21

Adam Galway

Take the Full-Stack Approach to Securing Your Modern Attack Surface

Rapid7 Blog

Take the Full-Stack Approach to Securing Your Modern Attack Surface

Aaron Wells

Securing Your Web App, One Robot at a Time

Products and Tools

Securing Your Web App, One Robot at a Time

Mark Hamill

Why More Teams are Shifting Security Analytics to the Cloud This Year

Detection and Response

Why More Teams are Shifting Security Analytics to the Cloud This Year

Margaret Wei

Monitor Google Cloud Platform (GCP) Data With InsightIDR

Detection and Response

Monitor Google Cloud Platform (GCP) Data With InsightIDR

Margaret Wei

Metasploit Wrap-Up: 2/12/21

Products and Tools

Metasploit Wrap-Up: 2/12/21

Adam Galway

Talkin’ SMAC: Alert Labeling and Why It Matters

Products and Tools

Talkin’ SMAC: Alert Labeling and Why It Matters

matthew berninger

New InsightVM Dashboard Helps You Discover Significant Changes in Your Environment from the Past 30 Days

Exposure Management

New InsightVM Dashboard Helps You Discover Significant Changes in Your Environment from the Past 30 Days

Dane Grace

CVE-2021-22652: Advantech iView Missing Authentication RCE (FIXED)

Exposure Management

CVE-2021-22652: Advantech iView Missing Authentication RCE (FIXED)

Tod Beardsley

SOAR Tools: What to Look for When Investing in Security Automation Tech

Security Operations

SOAR Tools: What to Look for When Investing in Security Automation Tech

Aaron Wells

Patch Tuesday - February 2021

Detection and Response

Patch Tuesday - February 2021

Greg Wiseman

Metasploit Wrap-Up: Feb. 5, 2021

Exposure Management

Metasploit Wrap-Up: Feb. 5, 2021

Christophe De La Fuente

Cisco Patches Recently Disclosed "sudo" Vulnerability (CVE-2021-3156) in Multiple Products

Exposure Management

Cisco Patches Recently Disclosed "sudo" Vulnerability (CVE-2021-3156) in Multiple Products

boB Rudis

SonicWall SNWLID-2021-0001 Zero-Day and SolarWinds’ 2021 CVE Trifecta: What You Need to Know

Threat Research

SonicWall SNWLID-2021-0001 Zero-Day and SolarWinds’ 2021 CVE Trifecta: What You Need to Know

boB Rudis

Vulnerability Scanning With the Metasploit Remote Check Service (Beta Release)

Products and Tools

Vulnerability Scanning With the Metasploit Remote Check Service (Beta Release)

Adam McClenaghan

Addressing the OT-IT Risk and Asset Inventory Gap

Security Operations

Addressing the OT-IT Risk and Asset Inventory Gap

Ben Garber