Posts tagged Research

To Maze and Beyond: How the Ransomware Double Extortion Space Has Evolved

Exposure Management

To Maze and Beyond: How the Ransomware Double Extortion Space Has Evolved

Tom Caiazza

Today’s SOC Strategies Will Soon Be Inadequate

Security Operations

Today’s SOC Strategies Will Soon Be Inadequate

Dina Durutlic

For Finserv Ransomware Attacks, Obtaining Customer Data Is the Focus

Industry Trends

For Finserv Ransomware Attacks, Obtaining Customer Data Is the Focus

Tom Caiazza

For Ransomware Double-Extorters, It's All About the Benjamins — and Data From Healthcare and Pharma

Exposure Management

For Ransomware Double-Extorters, It's All About the Benjamins — and Data From Healthcare and Pharma

Tom Caiazza

CVE-2021-3779: Ruby-MySQL Gem Client File Read (FIXED)

Exposure Management

CVE-2021-3779: Ruby-MySQL Gem Client File Read (FIXED)

Tod Beardsley

CVE-2022-31749: WatchGuard Authenticated Arbitrary File Read/Write (Fixed)

Exposure Management

CVE-2022-31749: WatchGuard Authenticated Arbitrary File Read/Write (Fixed)

Jake Baines

New Report Shows What Data Is Most at Risk to (and Prized by) Ransomware Attackers

Threat Research

New Report Shows What Data Is Most at Risk to (and Prized by) Ransomware Attackers

Rapid7

Complimentary GartnerⓇ Report "How to Respond to the 2022 Cyberthreat Landscape": Ransomware Edition

Threat Research

Complimentary GartnerⓇ Report "How to Respond to the 2022 Cyberthreat Landscape": Ransomware Edition

Tom Caiazza

CVE-2022-32230: Windows SMB Denial-of-Service Vulnerability (FIXED)

Threat Research

CVE-2022-32230: Windows SMB Denial-of-Service Vulnerability (FIXED)

Spencer McIntyre

Defending Against Tomorrow's Threats: Insights From RSAC 2022

Threat Research

Defending Against Tomorrow's Threats: Insights From RSAC 2022

Jesse Mack

[VIDEO] An Inside Look at the RSA 2022 Experience From the Rapid7 Team

Threat Research

[VIDEO] An Inside Look at the RSA 2022 Experience From the Rapid7 Team

Jesse Mack

Evaluating the Security of an Enterprise IoT Deployment at Domino's Pizza

Detection and Response

Evaluating the Security of an Enterprise IoT Deployment at Domino's Pizza

Deral Heiland

CVE-2022-22977: VMware Guest Authentication Service LPE (FIXED)

Exposure Management

CVE-2022-22977: VMware Guest Authentication Service LPE (FIXED)

Jake Baines

A Year on from the Ransomware Task Force Report

Industry Trends

A Year on from the Ransomware Task Force Report

Jen Ellis

CVE-2022-30525 (FIXED): Zyxel Firewall Unauthenticated Remote Command Injection

Vulnerabilities and Exploits

CVE-2022-30525 (FIXED): Zyxel Firewall Unauthenticated Remote Command Injection

Jake Baines

[Infographic] Cloud Misconfigurations: Don't Become a Breach Statistic

Threat Research

[Infographic] Cloud Misconfigurations: Don't Become a Breach Statistic

Rapid7

2022 Cloud Misconfigurations Report: Cloud Security Breaches and Attack Trends

Threat Research

2022 Cloud Misconfigurations Report: Cloud Security Breaches and Attack Trends

Jacob Roundy

CVE-2022-28810: ManageEngine ADSelfService Plus Authenticated Command Execution (Fixed)

Exposure Management

CVE-2022-28810: ManageEngine ADSelfService Plus Authenticated Command Execution (Fixed)

Jake Baines

CVE-2022-24527: Microsoft Connected Cache Local Privilege Escalation (Fixed)

Exposure Management

CVE-2022-24527: Microsoft Connected Cache Local Privilege Escalation (Fixed)

Jake Baines

Lessons in IoT Hacking: How to Dead-Bug a BGA Flash Memory Chip

Detection and Response

Lessons in IoT Hacking: How to Dead-Bug a BGA Flash Memory Chip

Deral Heiland

Cloud Pentesting, Pt. 3: The Impact of Ecosystem Maturity

Exposure Management

Cloud Pentesting, Pt. 3: The Impact of Ecosystem Maturity

Eric Mortaro