Rapid7 Cybersecurity Blog & Latest Vulnerability News

Threat Research

CVE-2020-0796: Microsoft SMBv3 Remote Code Execution Vulnerability Analysis

Bryce Abdo

Threat Research

Rapid7 2020 Threat Report: Exposing Common Attacker Trends

Tod Beardsley

Threat Research

DOUBLEPULSAR over RDP: Baselining Badness on the Internet

Tom Sellers

Threat Research

Active Exploitation of Citrix NetScaler (CVE-2019-19781): What You Need to Know

Derek Abdine

Threat Research

Oh, Behave! Who Made It to Rapid7 Labs' Naughty List(s) in 2019?

boB Rudis

Threat Research

Cisco Self-Signed Certificate Expiration on Jan. 1, 2020: What You Need to Know

boB Rudis

Threat Research

How I Shut Down a (Test) Factory with a Single Layer 2 Packet

Andreas Galauner

Threat Research

What a Difference a Year Makes: Revisiting Our Inaugural Fortune 500 ICER One Year Later

boB Rudis

Threat Research

Rapid7 Introduces Industry Cyber-Exposure Report: Deutsche Börse Prime Standard 320

Tod Beardsley

Threat Research

R7-2019-32: Denial-of-Service Vulnerabilities in Beckhoff TwinCAT PLC Environment

Tod Beardsley

Threat Research

This One Time on a Pen Test: Our Accidental Win

Ted Raffle

Threat Research

This One Time on a Pen Test: What’s in the Box?

Ted Raffle

Threat Research

This One Time on a Pen Test: Nerds in the NERC

Jonathan Stines

Threat Research

This One Time on a Pen Test: Missed a Spot

Ted Raffle

Threat Research

New Research: Investigating and Reversing Avionics CAN Bus Systems

Patrick Kiley

Threat Research

Attack Surface Monitoring with Project Sonar

Jon Hart

Threat Research

Industry Cyber-Exposure Report: FTSE 250+

boB Rudis

Threat Research

Extracting Firmware from Microcontrollers' Onboard Flash Memory, Part 3: Microchip PIC Microcontrollers

Deral Heiland

Threat Research

Extracting Firmware from Microcontrollers' Onboard Flash Memory, Part 2: Nordic RF Microcontrollers

Deral Heiland

Threat Research

Confluence Unauthorized RCE Vulnerability (CVE-2019-3396): What You Need to Know

boB Rudis

Threat Research

Apache HTTP Server Privilege Escalation (CVE-2019-0211): What You Need to Know

boB Rudis

The Rapid7 Blog:
Your Signal in the Security Noise

Featured posts

Introducing Rapid7 MDR for Microsoft

The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit

What’s New in Rapid7 Products & Services?

Introducing Rapid7 MDR for Microsoft

The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit

What’s New in Rapid7 Products & Services?

Categories

Popular Tags

CVE-2020-0796: Microsoft SMBv3 Remote Code Execution Vulnerability Analysis

Rapid7 2020 Threat Report: Exposing Common Attacker Trends

DOUBLEPULSAR over RDP: Baselining Badness on the Internet

Active Exploitation of Citrix NetScaler (CVE-2019-19781): What You Need to Know

Oh, Behave! Who Made It to Rapid7 Labs' Naughty List(s) in 2019?

Cisco Self-Signed Certificate Expiration on Jan. 1, 2020: What You Need to Know

How I Shut Down a (Test) Factory with a Single Layer 2 Packet

What a Difference a Year Makes: Revisiting Our Inaugural Fortune 500 ICER One Year Later

Rapid7 Introduces Industry Cyber-Exposure Report: Deutsche Börse Prime Standard 320

R7-2019-32: Denial-of-Service Vulnerabilities in Beckhoff TwinCAT PLC Environment

This One Time on a Pen Test: Our Accidental Win

This One Time on a Pen Test: What’s in the Box?

This One Time on a Pen Test: Nerds in the NERC

This One Time on a Pen Test: Missed a Spot

New Research: Investigating and Reversing Avionics CAN Bus Systems

Attack Surface Monitoring with Project Sonar

Industry Cyber-Exposure Report: FTSE 250+

Extracting Firmware from Microcontrollers' Onboard Flash Memory, Part 3: Microchip PIC Microcontrollers

Extracting Firmware from Microcontrollers' Onboard Flash Memory, Part 2: Nordic RF Microcontrollers

Confluence Unauthorized RCE Vulnerability (CVE-2019-3396): What You Need to Know

Apache HTTP Server Privilege Escalation (CVE-2019-0211): What You Need to Know

The Rapid7 Blog:Your Signal in the Security Noise

Featured posts

Introducing Rapid7 MDR for Microsoft

The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit

What’s New in Rapid7 Products & Services?

Introducing Rapid7 MDR for Microsoft

The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit

What’s New in Rapid7 Products & Services?

Categories

Categories

Popular Tags

Popular Tags

CVE-2020-0796: Microsoft SMBv3 Remote Code Execution Vulnerability Analysis

Rapid7 2020 Threat Report: Exposing Common Attacker Trends

DOUBLEPULSAR over RDP: Baselining Badness on the Internet

Active Exploitation of Citrix NetScaler (CVE-2019-19781): What You Need to Know

Oh, Behave! Who Made It to Rapid7 Labs' Naughty List(s) in 2019?

Cisco Self-Signed Certificate Expiration on Jan. 1, 2020: What You Need to Know

How I Shut Down a (Test) Factory with a Single Layer 2 Packet

What a Difference a Year Makes: Revisiting Our Inaugural Fortune 500 ICER One Year Later

Rapid7 Introduces Industry Cyber-Exposure Report: Deutsche Börse Prime Standard 320

R7-2019-32: Denial-of-Service Vulnerabilities in Beckhoff TwinCAT PLC Environment

This One Time on a Pen Test: Our Accidental Win

This One Time on a Pen Test: What’s in the Box?

This One Time on a Pen Test: Nerds in the NERC

This One Time on a Pen Test: Missed a Spot

New Research: Investigating and Reversing Avionics CAN Bus Systems

Attack Surface Monitoring with Project Sonar

Industry Cyber-Exposure Report: FTSE 250+

Extracting Firmware from Microcontrollers' Onboard Flash Memory, Part 3: Microchip PIC Microcontrollers

Extracting Firmware from Microcontrollers' Onboard Flash Memory, Part 2: Nordic RF Microcontrollers

Confluence Unauthorized RCE Vulnerability (CVE-2019-3396): What You Need to Know

Apache HTTP Server Privilege Escalation (CVE-2019-0211): What You Need to Know

The Rapid7 Blog:
Your Signal in the Security Noise