Rapid7

The Rapid7 Blog:
Your Signal in the Security Noise

Insights, stories, and guidance from our global security and research teams.

Weekly security updates — no spam. Privacy Policy.

Featured posts

How Modern SOCs are Fighting against Alert Fatigue

How Modern SOCs are Fighting against Alert Fatigue

Read post
Metasploit Wrap-Up 6/14/19

Products and Tools

Metasploit Wrap-Up 6/14/19

Brendan Watters's avatar

Brendan Watters

How to Automate Phishing Investigations and Remediation

Security Operations

How to Automate Phishing Investigations and Remediation

Christie Ott's avatar

Christie Ott

Heap Overflow Exploitation on Windows 10 Explained

Products and Tools

Heap Overflow Exploitation on Windows 10 Explained

Wei Chen's avatar

Wei Chen

Industry Cyber-Exposure Report: FTSE 250+

Threat Research

Industry Cyber-Exposure Report: FTSE 250+

boB Rudis's avatar

boB Rudis

Metasploit Wrap-Up 6/7/19

Products and Tools

Metasploit Wrap-Up 6/7/19

Matthew Kienow's avatar

Matthew Kienow

Microsoft Windows RDP Network Level Authentication Bypass (CVE-2019-9510)

Exposure Management

Microsoft Windows RDP Network Level Authentication Bypass (CVE-2019-9510)

boB Rudis's avatar

boB Rudis

Metasploit Wrap-Up 5/31/19

Products and Tools

Metasploit Wrap-Up 5/31/19

Caitlin Condon's avatar

Caitlin Condon

Hidden Helpers: Security-Focused HTTP Headers

Products and Tools

Hidden Helpers: Security-Focused HTTP Headers

Robert Lerner's avatar

Robert Lerner

Why Patch Management Is Crucial for Securing Your Organization

Products and Tools

Why Patch Management Is Crucial for Securing Your Organization

Justin Buchanan's avatar

Justin Buchanan

Metasploit Wrap-Up 5/24/19

Products and Tools

Metasploit Wrap-Up 5/24/19

Adam Cammack's avatar

Adam Cammack

What Is Cloud Security Posture Management (CSPM)?

Products and Tools

What Is Cloud Security Posture Management (CSPM)?

David Mundy's avatar

David Mundy

SIEM Delivery Models: Where Do Today’s Risks and Future Technology Lead Us?

Products and Tools

SIEM Delivery Models: Where Do Today’s Risks and Future Technology Lead Us?

Meaghan Buchanan's avatar

Meaghan Buchanan

Investigating the Plumbing of the IoT Ecosystem (R7-2018-65, R7-2019-07) (FIXED)

Detection and Response

Investigating the Plumbing of the IoT Ecosystem (R7-2018-65, R7-2019-07) (FIXED)

Tod Beardsley's avatar

Tod Beardsley

Metasploit Wrap-Up: May 17, 2019

Products and Tools

Metasploit Wrap-Up: May 17, 2019

Aaron Soto's avatar

Aaron Soto

The Last Chip

Rapid7 Blog

The Last Chip

Christina Luconi's avatar

Christina Luconi

How SOAR Is Disrupting Traditional Vulnerability Management

Security Operations

How SOAR Is Disrupting Traditional Vulnerability Management

Justin Buchanan's avatar

Justin Buchanan

WannaCry, Two Years On: Current Threat Landscape

Detection and Response

WannaCry, Two Years On: Current Threat Landscape

boB Rudis's avatar

boB Rudis

Medical Device Security, Part 3: Putting Safe Scanning into Practice

Industry Trends

Medical Device Security, Part 3: Putting Safe Scanning into Practice

Joe Agnew's avatar

Joe Agnew

Metasploit Wrap-Up 5/10/19

Products and Tools

Metasploit Wrap-Up 5/10/19

Pearce Barry's avatar

Pearce Barry

Extracting Firmware from Microcontrollers’ Onboard Flash Memory, Part 4

Detection and Response

Extracting Firmware from Microcontrollers’ Onboard Flash Memory, Part 4

Deral Heiland's avatar

Deral Heiland

Medical Device Security, Part 2: How to Give Medical Devices a Security Checkup

Industry Trends

Medical Device Security, Part 2: How to Give Medical Devices a Security Checkup

Cody Florek's avatar

Cody Florek