The Importance of Preventing and Detecting Malicious PowerShell Attacks
In this blog, we will discuss why organizations should care about malicious PowerShell activity, how attackers use PowerShell to steal credentials, and how to prevent and detect malicious PowerShell activity.…
How to Monitor Your AWS S3 Activity with InsightIDR
In this blog, we discuss AWS S3 buckets and how Rapid7's InsightIDR can help you monitor important activity.…
Why the Modern SIEM Is in the Cloud
Let’s talk about why modern SIEM is in the cloud, what core benefits you can expect, and how it is predicted to evolve as we soar toward 2020.…
Your Guide to Securing Multi-Cloud Environments in an IaaS World
In this post, we’ll cover the unique challenges with securing cloud environments, and some best practices specifically focused on securing multi-cloud infrastructure.…
Securing Your Cloud Environments with InsightIDR, Part 2: Amazon Web Services (AWS)
In this blog, we will talk about threat detection for the world’s most popular cloud host, Amazon Web Services (AWS).…
Securing Your Cloud Environments with InsightIDR, Part 1: Microsoft Azure
This post reviews logging considerations for Microsoft Azure environments, and integrations and detections available in Rapid7’s cloud SIEM, InsightIDR.…
Announcing CyberArk and InsightIDR Integration: Connect CyberArk with InsightIDR to Visualize and Investigate Your Privileged Access
To help companies monitor user behavior, secure privileged access, and identify attacks on passwords, we are teaming up with CyberArk.…
Rapid7 Threat Report Meets MITRE ATT&CK: What We Saw in 2019 Q1
The Q1 edition of our Quarterly Threat Report is unique because all investigated incidents have been mapped to the MITRE ATT&CK framework.…
Why Deploying a SIEM Tool Doesn't Need to Be Complicated: A Pirate Story
Ahoy! In this Blackbeard-inspired blog, we will tell ye’ a tale of navigating your SS SIEM, InsightIDR, through the unpredictable waters of cybersecurity to reach Remediation Island.…
Rapid7 Quarterly Threat Report: 2019 Q1
In our recent Quarterly Threat Report, we look at commonly targeted industries, the use of remote entry, and the most common phishing sites by industry.…
SIEM Delivery Models: Where Do Today’s Risks and Future Technology Lead Us?
Recently, we partnered with Ultimate IT Security to discuss the current and future state of SIEM technology, and how it’s evolving to address current risks.…
Take Advantage of Hands-On Learning Opportunities at Rapid7's Boost 2019 Customer Conference
Join our Rapid7 Product Consulting and Education teams at our Boost 2019 customer event on June 24 in Boston for hands-on learning.…
Your Pocket Guide for Cloud SIEM Evaluation
In this post, we’ll quickly review five critical questions to help kick-start your cloud SIEM evaluation.…
Capture the Flag: Red Team vs. Cloud SIEM
Here's how InsightIDR fared in a recent Capture the Flag (CTF) meetup with a special blue-team element.…
Forrester Tech Tide for Detection and Response: Is 2019 the Year of Convergence?
Rapid7 was recently recognized for capabilities spanning security user behavior analytics, security analytics, deception technology, SOAR, and file integrity monitoring.…
