Rapid7
@rapid7.com
Rapid7 can help you command your attack surface, smash silos, stay steps ahead of attackers, and take breaches from “inevitable” to preventable. Rapid7 technology, services, and research give organizations around the world control.
🔗: rapid7.com
🔗: rapid7.com
November #PatchTuesday drops 66 new vulnerabilities, with 1 critical zero-day exploited in the wild (no public disclosure yet).
3 critical RCEs patched, all rated less likely to be exploited. Find Rapid7's analysis in a new blog: r-7.co/4nOaIre
3 critical RCEs patched, all rated less likely to be exploited. Find Rapid7's analysis in a new blog: r-7.co/4nOaIre
November 12, 2025 at 2:41 PM
November #PatchTuesday drops 66 new vulnerabilities, with 1 critical zero-day exploited in the wild (no public disclosure yet).
3 critical RCEs patched, all rated less likely to be exploited. Find Rapid7's analysis in a new blog: r-7.co/4nOaIre
3 critical RCEs patched, all rated less likely to be exploited. Find Rapid7's analysis in a new blog: r-7.co/4nOaIre
🔺 Global threat activity surged in Q3.
Rapid7 Labs’ latest Threat Landscape Report tracks faster exploitation, new ransomware alliances, AI-assisted evasion, and state-backed campaigns reshaping the cyber domain.
🛡️ Download the report: https://r-7.co/3Lyxead
Rapid7 Labs’ latest Threat Landscape Report tracks faster exploitation, new ransomware alliances, AI-assisted evasion, and state-backed campaigns reshaping the cyber domain.
🛡️ Download the report: https://r-7.co/3Lyxead
November 12, 2025 at 2:00 PM
🔺 Global threat activity surged in Q3.
Rapid7 Labs’ latest Threat Landscape Report tracks faster exploitation, new ransomware alliances, AI-assisted evasion, and state-backed campaigns reshaping the cyber domain.
🛡️ Download the report: https://r-7.co/3Lyxead
Rapid7 Labs’ latest Threat Landscape Report tracks faster exploitation, new ransomware alliances, AI-assisted evasion, and state-backed campaigns reshaping the cyber domain.
🛡️ Download the report: https://r-7.co/3Lyxead
🗓️ A new meeting invite on your calendar, or a new attack vector?
Because calendar files (.ics) often bypass traditional email & attachment defenses, they offer attackers a low-friction path into corporate environments. More in a new blog from Rapid7 Labs: r-7.co/3Jwc9wx
Because calendar files (.ics) often bypass traditional email & attachment defenses, they offer attackers a low-friction path into corporate environments. More in a new blog from Rapid7 Labs: r-7.co/3Jwc9wx
November 6, 2025 at 6:50 PM
🗓️ A new meeting invite on your calendar, or a new attack vector?
Because calendar files (.ics) often bypass traditional email & attachment defenses, they offer attackers a low-friction path into corporate environments. More in a new blog from Rapid7 Labs: r-7.co/3Jwc9wx
Because calendar files (.ics) often bypass traditional email & attachment defenses, they offer attackers a low-friction path into corporate environments. More in a new blog from Rapid7 Labs: r-7.co/3Jwc9wx
Tomorrow’s threats don’t wait. Neither should your defenses.
This Cybersecurity Awareness Month, explore Rapid7’s collection of expert insights, case studies, and research to help you anticipate attacks and strengthen your defenses.
👉 Dive in here: https://r-7.co/3LmjwqG
This Cybersecurity Awareness Month, explore Rapid7’s collection of expert insights, case studies, and research to help you anticipate attacks and strengthen your defenses.
👉 Dive in here: https://r-7.co/3LmjwqG
October 22, 2025 at 11:27 PM
Tomorrow’s threats don’t wait. Neither should your defenses.
This Cybersecurity Awareness Month, explore Rapid7’s collection of expert insights, case studies, and research to help you anticipate attacks and strengthen your defenses.
👉 Dive in here: https://r-7.co/3LmjwqG
This Cybersecurity Awareness Month, explore Rapid7’s collection of expert insights, case studies, and research to help you anticipate attacks and strengthen your defenses.
👉 Dive in here: https://r-7.co/3LmjwqG
Microsoft’s October Patch Tuesday fixes 172 vulnerabilities, including 6 zero-days and 5 critical RCEs.
Microsoft reports exploitation in the wild for 3 zero-days and public disclosure for another 3. Only 1 critical RCE is considered likely to be exploited.
Full analysis: https://r-7.co/4oEU4vh
Microsoft reports exploitation in the wild for 3 zero-days and public disclosure for another 3. Only 1 critical RCE is considered likely to be exploited.
Full analysis: https://r-7.co/4oEU4vh
October 14, 2025 at 10:52 PM
Microsoft’s October Patch Tuesday fixes 172 vulnerabilities, including 6 zero-days and 5 critical RCEs.
Microsoft reports exploitation in the wild for 3 zero-days and public disclosure for another 3. Only 1 critical RCE is considered likely to be exploited.
Full analysis: https://r-7.co/4oEU4vh
Microsoft reports exploitation in the wild for 3 zero-days and public disclosure for another 3. Only 1 critical RCE is considered likely to be exploited.
Full analysis: https://r-7.co/4oEU4vh
👾 Get to know Russian Market, the underground hub where info-stealing malware logs & stolen user credentials are traded daily.
Dive into key vendors, malware variants & more via our latest research blog: r-7.co/4hdurir
Dive into key vendors, malware variants & more via our latest research blog: r-7.co/4hdurir
October 14, 2025 at 3:27 PM
👾 Get to know Russian Market, the underground hub where info-stealing malware logs & stolen user credentials are traded daily.
Dive into key vendors, malware variants & more via our latest research blog: r-7.co/4hdurir
Dive into key vendors, malware variants & more via our latest research blog: r-7.co/4hdurir
🚨 Rapid7 has observed increased activity involving a new threat group and #AWS cloud environments.
Self-referred to as ‘Crimson Collective’, the group has claimed responsibility for the recent theft of private repositories from the #RedHat GitLab. More: r-7.co/48ltfqS
Self-referred to as ‘Crimson Collective’, the group has claimed responsibility for the recent theft of private repositories from the #RedHat GitLab. More: r-7.co/48ltfqS
October 7, 2025 at 7:48 PM
🚨 Rapid7 has observed increased activity involving a new threat group and #AWS cloud environments.
Self-referred to as ‘Crimson Collective’, the group has claimed responsibility for the recent theft of private repositories from the #RedHat GitLab. More: r-7.co/48ltfqS
Self-referred to as ‘Crimson Collective’, the group has claimed responsibility for the recent theft of private repositories from the #RedHat GitLab. More: r-7.co/48ltfqS
“At the end of the day, it’s about peace of mind. Customers trust us to watch their backs so they can focus on running their business.” 🛡️
In our SOC, that’s the mission.
In our SOC, that’s the mission.
October 3, 2025 at 3:45 PM
“At the end of the day, it’s about peace of mind. Customers trust us to watch their backs so they can focus on running their business.” 🛡️
In our SOC, that’s the mission.
In our SOC, that’s the mission.
🚨 The Rapid7 MDR team has observed a significant rise in the number of threat actors leveraging Direct Send, a lesser-known feature within #Microsoft365.
Find our mitigation advice & more in a new blog: r-7.co/3VMtAeH
Find our mitigation advice & more in a new blog: r-7.co/3VMtAeH
October 2, 2025 at 3:41 PM
🚨 The Rapid7 MDR team has observed a significant rise in the number of threat actors leveraging Direct Send, a lesser-known feature within #Microsoft365.
Find our mitigation advice & more in a new blog: r-7.co/3VMtAeH
Find our mitigation advice & more in a new blog: r-7.co/3VMtAeH
Automated security scanners are often stopped in their tracks by MFA. This is great for security, but poses a challenge for scanning.
Luckily, Rapid7's InsightAppSec makes it easy to handle Time-based One-Time Passwords (TOTP). Find a guide in our blog: http://r-7.co/46DTiXV
Luckily, Rapid7's InsightAppSec makes it easy to handle Time-based One-Time Passwords (TOTP). Find a guide in our blog: http://r-7.co/46DTiXV
October 1, 2025 at 4:26 PM
Automated security scanners are often stopped in their tracks by MFA. This is great for security, but poses a challenge for scanning.
Luckily, Rapid7's InsightAppSec makes it easy to handle Time-based One-Time Passwords (TOTP). Find a guide in our blog: http://r-7.co/46DTiXV
Luckily, Rapid7's InsightAppSec makes it easy to handle Time-based One-Time Passwords (TOTP). Find a guide in our blog: http://r-7.co/46DTiXV
Most SIEMs collect data. Incident Command helps you act on it.
AI-powered workflows give analysts speed and clarity, while leaders see progress they can measure. Faster investigations, smarter response, real outcomes.
🔗 https://r-7.co/4n01JUs
AI-powered workflows give analysts speed and clarity, while leaders see progress they can measure. Faster investigations, smarter response, real outcomes.
🔗 https://r-7.co/4n01JUs
September 23, 2025 at 5:20 PM
Most SIEMs collect data. Incident Command helps you act on it.
AI-powered workflows give analysts speed and clarity, while leaders see progress they can measure. Faster investigations, smarter response, real outcomes.
🔗 https://r-7.co/4n01JUs
AI-powered workflows give analysts speed and clarity, while leaders see progress they can measure. Faster investigations, smarter response, real outcomes.
🔗 https://r-7.co/4n01JUs
⚠️ Rapid7 has identified a permission bypass vuln. in multiple versions of #OnePlus OxygenOS installed on its Android smartphones.
When leveraged, any app on the device may read SMS/MMS data & metadata via the default Telephony provider. More in our blog: r-7.co/42EujlR
When leveraged, any app on the device may read SMS/MMS data & metadata via the default Telephony provider. More in our blog: r-7.co/42EujlR
September 23, 2025 at 12:58 PM
⚠️ Rapid7 has identified a permission bypass vuln. in multiple versions of #OnePlus OxygenOS installed on its Android smartphones.
When leveraged, any app on the device may read SMS/MMS data & metadata via the default Telephony provider. More in our blog: r-7.co/42EujlR
When leveraged, any app on the device may read SMS/MMS data & metadata via the default Telephony provider. More in our blog: r-7.co/42EujlR
Analysts shouldn’t have to carry the weight of 4,400 alerts a day.
Incident Command flips the model: AI trained by Rapid7’s SOC drives accurate triage, guided investigations, and a unified workflow that actually accelerates analysts.
🔗 https://r-7.co/4mui03e
Incident Command flips the model: AI trained by Rapid7’s SOC drives accurate triage, guided investigations, and a unified workflow that actually accelerates analysts.
🔗 https://r-7.co/4mui03e
September 19, 2025 at 8:24 PM
Analysts shouldn’t have to carry the weight of 4,400 alerts a day.
Incident Command flips the model: AI trained by Rapid7’s SOC drives accurate triage, guided investigations, and a unified workflow that actually accelerates analysts.
🔗 https://r-7.co/4mui03e
Incident Command flips the model: AI trained by Rapid7’s SOC drives accurate triage, guided investigations, and a unified workflow that actually accelerates analysts.
🔗 https://r-7.co/4mui03e
🚨 On 9/18/2025, #Fortra published an advisory for CVE-2025-10035, a new vulnerability affecting GoAnywhere MFT.
The vulnerability allows an attacker to achieve unauthenticated remote code execution. More details & mitigation guidance in a new blog: https://r-7.co/4mAaweQ
The vulnerability allows an attacker to achieve unauthenticated remote code execution. More details & mitigation guidance in a new blog: https://r-7.co/4mAaweQ
September 19, 2025 at 5:30 PM
🚨 On 9/18/2025, #Fortra published an advisory for CVE-2025-10035, a new vulnerability affecting GoAnywhere MFT.
The vulnerability allows an attacker to achieve unauthenticated remote code execution. More details & mitigation guidance in a new blog: https://r-7.co/4mAaweQ
The vulnerability allows an attacker to achieve unauthenticated remote code execution. More details & mitigation guidance in a new blog: https://r-7.co/4mAaweQ
Casinos rely on eyes in the sky to see every table and every move.
Rapid7 gives you that same clarity across your environment—endpoint to cloud, users to attackers—with the context to act.
Watch the full interview for more insights: https://r-7.co/45Rshje
Rapid7 gives you that same clarity across your environment—endpoint to cloud, users to attackers—with the context to act.
Watch the full interview for more insights: https://r-7.co/45Rshje
September 18, 2025 at 7:08 PM
Casinos rely on eyes in the sky to see every table and every move.
Rapid7 gives you that same clarity across your environment—endpoint to cloud, users to attackers—with the context to act.
Watch the full interview for more insights: https://r-7.co/45Rshje
Rapid7 gives you that same clarity across your environment—endpoint to cloud, users to attackers—with the context to act.
Watch the full interview for more insights: https://r-7.co/45Rshje
You may be outnumbered, but with Rapid7 MDR, you're never outmatched.
Rapid7 MDR delivers expert-led, attacker-aware detection and response across every corner of your environment.
Discover the Rapid7 MDR difference: https://r-7.co/3Ibgi8r
Rapid7 MDR delivers expert-led, attacker-aware detection and response across every corner of your environment.
Discover the Rapid7 MDR difference: https://r-7.co/3Ibgi8r
September 16, 2025 at 5:10 PM
You may be outnumbered, but with Rapid7 MDR, you're never outmatched.
Rapid7 MDR delivers expert-led, attacker-aware detection and response across every corner of your environment.
Discover the Rapid7 MDR difference: https://r-7.co/3Ibgi8r
Rapid7 MDR delivers expert-led, attacker-aware detection and response across every corner of your environment.
Discover the Rapid7 MDR difference: https://r-7.co/3Ibgi8r
September #PatchTuesday: 176 fixes, five critical RCEs, and multiple zero-days. Key priorities include SQL Server (CVE-2024-21907), Azure HPC (CVE-2025-55232), and SMB server (CVE-2025-55234).
Full analysis 👉 https://r-7.co/4m9MBm1
Full analysis 👉 https://r-7.co/4m9MBm1
September 12, 2025 at 8:18 PM
September #PatchTuesday: 176 fixes, five critical RCEs, and multiple zero-days. Key priorities include SQL Server (CVE-2024-21907), Azure HPC (CVE-2025-55232), and SMB server (CVE-2025-55234).
Full analysis 👉 https://r-7.co/4m9MBm1
Full analysis 👉 https://r-7.co/4m9MBm1
In Q2, 2025...
🛡️ Bunny Loader was still one of the most commonly observed malicious files
🛡️ Helpdesk & MS Teams remained top targets for social engineering
🛡️ Valid accounts with no MFA: here for the long haul
More insights from our IR team in a new blog: r-7.co/4mZrTqr
🛡️ Bunny Loader was still one of the most commonly observed malicious files
🛡️ Helpdesk & MS Teams remained top targets for social engineering
🛡️ Valid accounts with no MFA: here for the long haul
More insights from our IR team in a new blog: r-7.co/4mZrTqr
September 11, 2025 at 2:35 PM
In Q2, 2025...
🛡️ Bunny Loader was still one of the most commonly observed malicious files
🛡️ Helpdesk & MS Teams remained top targets for social engineering
🛡️ Valid accounts with no MFA: here for the long haul
More insights from our IR team in a new blog: r-7.co/4mZrTqr
🛡️ Bunny Loader was still one of the most commonly observed malicious files
🛡️ Helpdesk & MS Teams remained top targets for social engineering
🛡️ Valid accounts with no MFA: here for the long haul
More insights from our IR team in a new blog: r-7.co/4mZrTqr
Salt Typhoon uses rootkits, backdoors, & “living-off-the-land” tools to infiltrate telecoms & critical sectors worldwide.
🛡️ Our report covers their TTPs and provides defensive recommendations for defenders: https://r-7.co/3VHDz4V
🛡️ Our report covers their TTPs and provides defensive recommendations for defenders: https://r-7.co/3VHDz4V
September 10, 2025 at 5:30 PM
Salt Typhoon uses rootkits, backdoors, & “living-off-the-land” tools to infiltrate telecoms & critical sectors worldwide.
🛡️ Our report covers their TTPs and provides defensive recommendations for defenders: https://r-7.co/3VHDz4V
🛡️ Our report covers their TTPs and provides defensive recommendations for defenders: https://r-7.co/3VHDz4V
What if your company’s network was already for sale?
Initial Access Brokers are selling access, often with user privileges, for as little as $500. Our 2025 Access Brokers Report shows how they operate and how to fight back: r-7.co/411cmgP
Initial Access Brokers are selling access, often with user privileges, for as little as $500. Our 2025 Access Brokers Report shows how they operate and how to fight back: r-7.co/411cmgP
September 9, 2025 at 5:01 PM
What if your company’s network was already for sale?
Initial Access Brokers are selling access, often with user privileges, for as little as $500. Our 2025 Access Brokers Report shows how they operate and how to fight back: r-7.co/411cmgP
Initial Access Brokers are selling access, often with user privileges, for as little as $500. Our 2025 Access Brokers Report shows how they operate and how to fight back: r-7.co/411cmgP
Learn from casinos. Seriously. They observe everything, manage risk tightly, and the house always wins.
Can your security program do the same? Watch the full interview for more insights: https://r-7.co/45Rshje
Can your security program do the same? Watch the full interview for more insights: https://r-7.co/45Rshje
September 4, 2025 at 7:07 PM
Learn from casinos. Seriously. They observe everything, manage risk tightly, and the house always wins.
Can your security program do the same? Watch the full interview for more insights: https://r-7.co/45Rshje
Can your security program do the same? Watch the full interview for more insights: https://r-7.co/45Rshje
At #DEFCON33, Rapid7's Deral Heiland challenged IoT Village participants to extract a smart camera's firmware, manipulate its flash memory, and ultimately gain root access 📸
Today, the full exercise is available in whitepaper form! Find a free download via our blog: r-7.co/462gJcW
Today, the full exercise is available in whitepaper form! Find a free download via our blog: r-7.co/462gJcW
September 2, 2025 at 4:47 PM
At #DEFCON33, Rapid7's Deral Heiland challenged IoT Village participants to extract a smart camera's firmware, manipulate its flash memory, and ultimately gain root access 📸
Today, the full exercise is available in whitepaper form! Find a free download via our blog: r-7.co/462gJcW
Today, the full exercise is available in whitepaper form! Find a free download via our blog: r-7.co/462gJcW
Attackers don’t target assets. They exploit exposures.
Exposure Command helps you see real attack paths, validate defenses, and cut risk with confidence.
Learn more: https://r-7.co/3U7X0mE
Exposure Command helps you see real attack paths, validate defenses, and cut risk with confidence.
Learn more: https://r-7.co/3U7X0mE
September 1, 2025 at 7:11 PM
Attackers don’t target assets. They exploit exposures.
Exposure Command helps you see real attack paths, validate defenses, and cut risk with confidence.
Learn more: https://r-7.co/3U7X0mE
Exposure Command helps you see real attack paths, validate defenses, and cut risk with confidence.
Learn more: https://r-7.co/3U7X0mE
20% of breaches stem from exploited vulnerabilities.
46% come from assets VM can’t see.
Exposure Command helps you uncover risks and focus where it matters most. See how: https://r-7.co/3U7X0mE
46% come from assets VM can’t see.
Exposure Command helps you uncover risks and focus where it matters most. See how: https://r-7.co/3U7X0mE
August 27, 2025 at 5:05 PM
20% of breaches stem from exploited vulnerabilities.
46% come from assets VM can’t see.
Exposure Command helps you uncover risks and focus where it matters most. See how: https://r-7.co/3U7X0mE
46% come from assets VM can’t see.
Exposure Command helps you uncover risks and focus where it matters most. See how: https://r-7.co/3U7X0mE
Rapid7 has been named a Leader in the IDC MarketScape: Worldwide Exposure Management 2025 Vendor Assessment. 👏
IDC recognized the Command Platform for unifying exposure management & threat detection, giving security teams situational awareness.
Learn more: https://r-7.co/3Jyhnrf
IDC recognized the Command Platform for unifying exposure management & threat detection, giving security teams situational awareness.
Learn more: https://r-7.co/3Jyhnrf
August 27, 2025 at 1:12 PM
Rapid7 has been named a Leader in the IDC MarketScape: Worldwide Exposure Management 2025 Vendor Assessment. 👏
IDC recognized the Command Platform for unifying exposure management & threat detection, giving security teams situational awareness.
Learn more: https://r-7.co/3Jyhnrf
IDC recognized the Command Platform for unifying exposure management & threat detection, giving security teams situational awareness.
Learn more: https://r-7.co/3Jyhnrf