Posts tagged Research

For Ransomware Double-Extorters, It's All About the Benjamins — and Data From Healthcare and Pharma

Exposure Management

For Ransomware Double-Extorters, It's All About the Benjamins — and Data From Healthcare and Pharma

Tom Caiazza

CVE-2021-3779: Ruby-MySQL Gem Client File Read (FIXED)

Exposure Management

CVE-2021-3779: Ruby-MySQL Gem Client File Read (FIXED)

Tod Beardsley

CVE-2022-31749: WatchGuard Authenticated Arbitrary File Read/Write (Fixed)

Exposure Management

CVE-2022-31749: WatchGuard Authenticated Arbitrary File Read/Write (Fixed)

Jake Baines

New Report Shows What Data Is Most at Risk to (and Prized by) Ransomware Attackers

Threat Research

New Report Shows What Data Is Most at Risk to (and Prized by) Ransomware Attackers

Rapid7

Complimentary GartnerⓇ Report "How to Respond to the 2022 Cyberthreat Landscape": Ransomware Edition

Threat Research

Complimentary GartnerⓇ Report "How to Respond to the 2022 Cyberthreat Landscape": Ransomware Edition

Tom Caiazza

CVE-2022-32230: Windows SMB Denial-of-Service Vulnerability (FIXED)

Threat Research

CVE-2022-32230: Windows SMB Denial-of-Service Vulnerability (FIXED)

Spencer McIntyre

Defending Against Tomorrow's Threats: Insights From RSAC 2022

Threat Research

Defending Against Tomorrow's Threats: Insights From RSAC 2022

Jesse Mack

[VIDEO] An Inside Look at the RSA 2022 Experience From the Rapid7 Team

Threat Research

[VIDEO] An Inside Look at the RSA 2022 Experience From the Rapid7 Team

Jesse Mack

Evaluating the Security of an Enterprise IoT Deployment at Domino's Pizza

Detection and Response

Evaluating the Security of an Enterprise IoT Deployment at Domino's Pizza

Deral Heiland

CVE-2022-22977: VMware Guest Authentication Service LPE (FIXED)

Exposure Management

CVE-2022-22977: VMware Guest Authentication Service LPE (FIXED)

Jake Baines

A Year on from the Ransomware Task Force Report

Industry Trends

A Year on from the Ransomware Task Force Report

Jen Ellis

CVE-2022-30525 (FIXED): Zyxel Firewall Unauthenticated Remote Command Injection

Vulnerabilities and Exploits

CVE-2022-30525 (FIXED): Zyxel Firewall Unauthenticated Remote Command Injection

Jake Baines

[Infographic] Cloud Misconfigurations: Don't Become a Breach Statistic

Threat Research

[Infographic] Cloud Misconfigurations: Don't Become a Breach Statistic

Rapid7

2022 Cloud Misconfigurations Report: Cloud Security Breaches and Attack Trends

Threat Research

2022 Cloud Misconfigurations Report: Cloud Security Breaches and Attack Trends

Jacob Roundy

CVE-2022-28810: ManageEngine ADSelfService Plus Authenticated Command Execution (Fixed)

Exposure Management

CVE-2022-28810: ManageEngine ADSelfService Plus Authenticated Command Execution (Fixed)

Jake Baines

CVE-2022-24527: Microsoft Connected Cache Local Privilege Escalation (Fixed)

Exposure Management

CVE-2022-24527: Microsoft Connected Cache Local Privilege Escalation (Fixed)

Jake Baines

Lessons in IoT Hacking: How to Dead-Bug a BGA Flash Memory Chip

Detection and Response

Lessons in IoT Hacking: How to Dead-Bug a BGA Flash Memory Chip

Deral Heiland

Cloud Pentesting, Pt. 3: The Impact of Ecosystem Maturity

Exposure Management

Cloud Pentesting, Pt. 3: The Impact of Ecosystem Maturity

Eric Mortaro

Cloud Pentesting, Pt. 2: Testing Across Different Deployments

Exposure Management

Cloud Pentesting, Pt. 2: Testing Across Different Deployments

Eric Mortaro

CVE-2022-1026: Kyocera Net View Address Book Exposure

Threat Research

CVE-2022-1026: Kyocera Net View Address Book Exposure

Tod Beardsley

Analyzing the Attack Landscape: Rapid7’s 2021 Vulnerability Intelligence Report

Exposure Management

Analyzing the Attack Landscape: Rapid7’s 2021 Vulnerability Intelligence Report

Caitlin Condon