Quick Cookie Notification

This site uses cookies, including for analytics, personalization, and advertising purposes. For more information or to change your cookie settings, click here.

If you continue to browse this site without changing your cookie settings, you agree to this use.

View Cookie Policy for full details

We've updated Rapid7’s community resources

Hello. We've evolved our community resources to provide a richer experience. Learn more.
Questions? Contact us.

blog.rapid7.com

Blogs, How-tos, & Research

Our new blog will still publish the same cutting-edge research, analysis, and commentary you expect from Rapid7.

Explore the Blog
help.rapid7.com

Docs, Help, & Questions

Help content and documents are now curated to let you get the information you need even faster.

Explore Help
4 min read

Update on SolarWinds Supply-Chain Attack: SUNSPOT and New Malware Family Associations

 Read More
1 min read

Happy HaXmas from the Rapid7 Team!

 Read More
4 min read

Rapid7 Recognized as a Strong Performer Among Security Analytics Providers by Leading Industry Report

 Read More
View All Tags

Popular Tags:
4 min read

State-Sponsored Threat Actors Target Security Researchers

On Monday, Google’s Threat Analysis Group published a blog on a widespread social engineering campaign that targeted security researchers working on vulnerability research and development.…

boB Rudis
boB Rudis Jan 26, 2021 News
4 min read

Finding Results at the Intersection of Security and Engineering

In this blog, Chaim Mazal discusses the importance of collaborating with teams to build a comprehensive security culture within an organization.…

Chaim Mazal
Chaim Mazal Jan 25, 2021 Customer Perspective
3 min read

Metasploit Wrap-Up

A new Microsoft Windows Spooler privesc module, along with some fixes and improvements!…

Dean Welch
Dean Welch Jan 22, 2021 Metasploit
5 min read

NICER Protocol Deep Dive: Internet Exposure of NTP

In the latest installment of our NICER Protocol Deep Dive blog series, we take a closer look at the internet exposure of NTP.…

Tod Beardsley
Tod Beardsley Jan 22, 2021 National / Industry / Cloud Exposure Report (NICER)
4 min read

Principles for personal information security legislation

Rapid7's principles for laws to protect personal information: 1) Strong but flexible security requirements; 2) Security exemptions from privacy restrictions; 3) State preemption without undermining cybersecurity.…

Harley Geiger
Harley Geiger Jan 21, 2021 Public Policy
3 min read

You Can Now Buy (And Renew) Five More Rapid7 Products Through AWS Marketplace

Learn more about our set of listings and how Marketplace might be able to help you find budget for that shiny new Rapid7 solution you’ve had your eye on.…

Aaron Sawitsky
Aaron Sawitsky Jan 20, 2021 AWS
6 min read

InsightIDR: 2020 Highlights and What’s Ahead in 2021

As we kick off the New Year, we wanted to highlight some key InsightIDR product investments and take a look ahead at detection and response in 2021.…

Margaret Zonay
Margaret Zonay Jan 19, 2021 InsightIDR
3 min read

Metasploit Wrap-Up

Commemorating the 2020 December Metasploit community CTF A new commemorative banner has been added to the Metasploit console to celebrate the teams that participated in the 2020 December Metasploit community CTF and achieved 100 or more points: If you missed out on participating in this…

Alan David Foster
Alan David Foster Jan 15, 2021 Metasploit Weekly Wrapup
5 min read

NICER Protocol Deep Dive: Internet Exposure of DNS-over-TLS

In this edition of our NICER Protocol Deep Dive blog series, we'll take a closer look at the internet exposure of DNS-over-TLS.…

Tod Beardsley
Tod Beardsley Jan 15, 2021 National / Industry / Cloud Exposure Report (NICER)
7 min read

Patch Tuesday - January 2021

We arrive at the first Patch Tuesday of 2021 (2021-Jan) with 83 vulnerabilities across our standard spread of products.  Windows Operating System vulnerabilities dominated this month's advisories, followed by Microsoft Office (which includes the SharePoint family of products), and lastly some from less frequent products…

Richard Tsang
Richard Tsang Jan 12, 2021 Vulnerability Management
4 min read

Update on SolarWinds Supply-Chain Attack: SUNSPOT and New Malware Family Associations

New research has been published that expands the security community’s understanding of the breadth and depth of the SolarWinds attack.…

boB Rudis
boB Rudis Jan 12, 2021 News
3 min read

Metasploit Wrap-Up

Eight new Metasploit modules for various targets (and outcomes!), with a good set of improvements and fixes!…

Sonny Gonzalez
Sonny Gonzalez Jan 08, 2021 Metasploit
4 min read

What’s New in InsightAppSec and tCell: Q4 2020 in Review

In this blog, we'll recap some of the new and exciting features we have released as a part of our application security portfolio.…

Bria Grangard
Bria Grangard Jan 08, 2021 InsightAppSec
4 min read

How COVID-19 Reinforced the Need for Mobile Device Management

Remote workforces and mobile device management (MDM) are more important than ever in 2020’s pandemic reality.…

Justin Turcotte
Justin Turcotte Jan 07, 2021 Remote Working
4 min read

What’s New in InsightVM: Q4 2020 in Review

Here’s our roundup of the new and improved InsightVM features we’ve updated in Q4 2020.…

Rapid7
Rapid7 Jan 06, 2021 InsightVM

Never miss a blog

Get the latest stories, expertise, and news about security today.

BACK TO TOP