Rapid7 Cybersecurity Blog & Latest Vulnerability News

Vulnerabilities and Exploits

CVE-2025-4365/CVE-2024-12284: NetScaler Console/SDX Authenticated Arbitrary File Read/Write (FIXED)

Calum Hutton

Products and Tools

Metasploit Wrap-Up 06/27/25

Spencer McIntyre

Vulnerabilities and Exploits

Konica Minolta bizhub Multifunction Printer: Pass-Back Attack Vulnerability (NOT FIXED)

Deral Heiland

Vulnerabilities and Exploits

CVE-2025-6543: Zero Day Exploitation of NetScaler ADC and NetScaler Gateway

Stephen Fewer

Industry Trends

3 Ways Social Engineering Is Evolving and What Security Teams Must Do Next

Emma Burdett

Industry Trends

Key Takeaways from the Take Command Summit 2025: Outpacing the Adversary – Red Teaming in a Complex Threat Landscape

Rapid7

Industry Trends

Key Takeaways from the Take Command Summit 2025: AI in Action – How Rapid7 is Redefining Security Operations

Rapid7

Threat Research

From .pth to p0wned: Abuse of Pickle Files in AI Model Supply Chains

Christiaan Beek

Products and Tools

Metasploit Wrap-Up 07/03/2025

Jack Heysel

Threat Research

Scattered Spider: Rapid7 Insights, Observations, and Recommendations

Rapid7 Labs

Vulnerabilities and Exploits

CVE-2025-6759: Citrix Virtual Apps and Desktops - Local Privilege Escalation (FIXED)

Brandon Fisher

Vulnerabilities and Exploits

Coverage Plus Context Equals Intelligent Exposure Management

Joel Alcon

Security Operations

Being Fearless in Pentesting: Testing Sensitive Resources

Anna Katarina Quinn

Vulnerabilities and Exploits

Multiple Brother Devices: Multiple Vulnerabilities (FIXED)

Stephen Fewer

Industry Trends

Key Takeaways from the Take Command Summit 2025: Demystifying Cloud Detection & Response – The Future of SOC and MDR

Rapid7

Rapid7 Blog

Patch Tuesday - June 2025

Adam Barnett

Vulnerabilities and Exploits

BlackSuit Continues Social Engineering Attacks in Wake of Black Basta’s Internal Conflict

Tyler McGraw

Artificial Intelligence

5 Things Security Leaders Need to Know About Agentic AI

Emma Burdett

Products and Tools

Metasploit Wrap-Up 06/06/2025

Rapid7

Culture

Cultivating Growth and Development at Rapid7

Rapid7

Culture

India's Cyber Leaders Prepare for AI-Driven Threats

Rapid7

The Rapid7 Blog:
Your Signal in the Security Noise

Featured posts

Introducing Rapid7 MDR for Microsoft

The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit

What’s New in Rapid7 Products & Services?

Introducing Rapid7 MDR for Microsoft

The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit

What’s New in Rapid7 Products & Services?

Categories

Popular Tags

CVE-2025-4365/CVE-2024-12284: NetScaler Console/SDX Authenticated Arbitrary File Read/Write (FIXED)

Metasploit Wrap-Up 06/27/25

Konica Minolta bizhub Multifunction Printer: Pass-Back Attack Vulnerability (NOT FIXED)

CVE-2025-6543: Zero Day Exploitation of NetScaler ADC and NetScaler Gateway

3 Ways Social Engineering Is Evolving and What Security Teams Must Do Next

Key Takeaways from the Take Command Summit 2025: Outpacing the Adversary – Red Teaming in a Complex Threat Landscape

Key Takeaways from the Take Command Summit 2025: AI in Action – How Rapid7 is Redefining Security Operations

From .pth to p0wned: Abuse of Pickle Files in AI Model Supply Chains

Metasploit Wrap-Up 07/03/2025

Scattered Spider: Rapid7 Insights, Observations, and Recommendations

CVE-2025-6759: Citrix Virtual Apps and Desktops - Local Privilege Escalation (FIXED)

Coverage Plus Context Equals Intelligent Exposure Management

Being Fearless in Pentesting: Testing Sensitive Resources

Multiple Brother Devices: Multiple Vulnerabilities (FIXED)

Key Takeaways from the Take Command Summit 2025: Demystifying Cloud Detection & Response – The Future of SOC and MDR

Patch Tuesday - June 2025

BlackSuit Continues Social Engineering Attacks in Wake of Black Basta’s Internal Conflict

5 Things Security Leaders Need to Know About Agentic AI

Metasploit Wrap-Up 06/06/2025

Cultivating Growth and Development at Rapid7

India's Cyber Leaders Prepare for AI-Driven Threats

The Rapid7 Blog:Your Signal in the Security Noise

Featured posts

Introducing Rapid7 MDR for Microsoft

The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit

What’s New in Rapid7 Products & Services?

Introducing Rapid7 MDR for Microsoft

The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit

What’s New in Rapid7 Products & Services?

Categories

Categories

Popular Tags

Popular Tags

CVE-2025-4365/CVE-2024-12284: NetScaler Console/SDX Authenticated Arbitrary File Read/Write (FIXED)

Metasploit Wrap-Up 06/27/25

Konica Minolta bizhub Multifunction Printer: Pass-Back Attack Vulnerability (NOT FIXED)

CVE-2025-6543: Zero Day Exploitation of NetScaler ADC and NetScaler Gateway

3 Ways Social Engineering Is Evolving and What Security Teams Must Do Next

Key Takeaways from the Take Command Summit 2025: Outpacing the Adversary – Red Teaming in a Complex Threat Landscape

Key Takeaways from the Take Command Summit 2025: AI in Action – How Rapid7 is Redefining Security Operations

From .pth to p0wned: Abuse of Pickle Files in AI Model Supply Chains

Metasploit Wrap-Up 07/03/2025

Scattered Spider: Rapid7 Insights, Observations, and Recommendations

CVE-2025-6759: Citrix Virtual Apps and Desktops - Local Privilege Escalation (FIXED)

Coverage Plus Context Equals Intelligent Exposure Management

Being Fearless in Pentesting: Testing Sensitive Resources

Multiple Brother Devices: Multiple Vulnerabilities (FIXED)

Key Takeaways from the Take Command Summit 2025: Demystifying Cloud Detection & Response – The Future of SOC and MDR

Patch Tuesday - June 2025

BlackSuit Continues Social Engineering Attacks in Wake of Black Basta’s Internal Conflict

5 Things Security Leaders Need to Know About Agentic AI

Metasploit Wrap-Up 06/06/2025

Cultivating Growth and Development at Rapid7

India's Cyber Leaders Prepare for AI-Driven Threats

The Rapid7 Blog:
Your Signal in the Security Noise