Rapid7
@rapid7.com
Rapid7 can help you command your attack surface, smash silos, stay steps ahead of attackers, and take breaches from “inevitable” to preventable. Rapid7 technology, services, and research give organizations around the world control.
🔗: rapid7.com
🔗: rapid7.com
November #PatchTuesday drops 66 new vulnerabilities, with 1 critical zero-day exploited in the wild (no public disclosure yet).
3 critical RCEs patched, all rated less likely to be exploited. Find Rapid7's analysis in a new blog: r-7.co/4nOaIre
3 critical RCEs patched, all rated less likely to be exploited. Find Rapid7's analysis in a new blog: r-7.co/4nOaIre
November 12, 2025 at 2:41 PM
November #PatchTuesday drops 66 new vulnerabilities, with 1 critical zero-day exploited in the wild (no public disclosure yet).
3 critical RCEs patched, all rated less likely to be exploited. Find Rapid7's analysis in a new blog: r-7.co/4nOaIre
3 critical RCEs patched, all rated less likely to be exploited. Find Rapid7's analysis in a new blog: r-7.co/4nOaIre
Microsoft’s October Patch Tuesday fixes 172 vulnerabilities, including 6 zero-days and 5 critical RCEs.
Microsoft reports exploitation in the wild for 3 zero-days and public disclosure for another 3. Only 1 critical RCE is considered likely to be exploited.
Full analysis: https://r-7.co/4oEU4vh
Microsoft reports exploitation in the wild for 3 zero-days and public disclosure for another 3. Only 1 critical RCE is considered likely to be exploited.
Full analysis: https://r-7.co/4oEU4vh
October 14, 2025 at 10:52 PM
Microsoft’s October Patch Tuesday fixes 172 vulnerabilities, including 6 zero-days and 5 critical RCEs.
Microsoft reports exploitation in the wild for 3 zero-days and public disclosure for another 3. Only 1 critical RCE is considered likely to be exploited.
Full analysis: https://r-7.co/4oEU4vh
Microsoft reports exploitation in the wild for 3 zero-days and public disclosure for another 3. Only 1 critical RCE is considered likely to be exploited.
Full analysis: https://r-7.co/4oEU4vh
“At the end of the day, it’s about peace of mind. Customers trust us to watch their backs so they can focus on running their business.” 🛡️
In our SOC, that’s the mission.
In our SOC, that’s the mission.
October 3, 2025 at 3:45 PM
“At the end of the day, it’s about peace of mind. Customers trust us to watch their backs so they can focus on running their business.” 🛡️
In our SOC, that’s the mission.
In our SOC, that’s the mission.
🚨 The Rapid7 MDR team has observed a significant rise in the number of threat actors leveraging Direct Send, a lesser-known feature within #Microsoft365.
Find our mitigation advice & more in a new blog: r-7.co/3VMtAeH
Find our mitigation advice & more in a new blog: r-7.co/3VMtAeH
October 2, 2025 at 3:41 PM
🚨 The Rapid7 MDR team has observed a significant rise in the number of threat actors leveraging Direct Send, a lesser-known feature within #Microsoft365.
Find our mitigation advice & more in a new blog: r-7.co/3VMtAeH
Find our mitigation advice & more in a new blog: r-7.co/3VMtAeH
⚠️ Rapid7 has identified a permission bypass vuln. in multiple versions of #OnePlus OxygenOS installed on its Android smartphones.
When leveraged, any app on the device may read SMS/MMS data & metadata via the default Telephony provider. More in our blog: r-7.co/42EujlR
When leveraged, any app on the device may read SMS/MMS data & metadata via the default Telephony provider. More in our blog: r-7.co/42EujlR
September 23, 2025 at 12:58 PM
⚠️ Rapid7 has identified a permission bypass vuln. in multiple versions of #OnePlus OxygenOS installed on its Android smartphones.
When leveraged, any app on the device may read SMS/MMS data & metadata via the default Telephony provider. More in our blog: r-7.co/42EujlR
When leveraged, any app on the device may read SMS/MMS data & metadata via the default Telephony provider. More in our blog: r-7.co/42EujlR
🚨 On 9/18/2025, #Fortra published an advisory for CVE-2025-10035, a new vulnerability affecting GoAnywhere MFT.
The vulnerability allows an attacker to achieve unauthenticated remote code execution. More details & mitigation guidance in a new blog: https://r-7.co/4mAaweQ
The vulnerability allows an attacker to achieve unauthenticated remote code execution. More details & mitigation guidance in a new blog: https://r-7.co/4mAaweQ
September 19, 2025 at 5:30 PM
🚨 On 9/18/2025, #Fortra published an advisory for CVE-2025-10035, a new vulnerability affecting GoAnywhere MFT.
The vulnerability allows an attacker to achieve unauthenticated remote code execution. More details & mitigation guidance in a new blog: https://r-7.co/4mAaweQ
The vulnerability allows an attacker to achieve unauthenticated remote code execution. More details & mitigation guidance in a new blog: https://r-7.co/4mAaweQ
Casinos rely on eyes in the sky to see every table and every move.
Rapid7 gives you that same clarity across your environment—endpoint to cloud, users to attackers—with the context to act.
Watch the full interview for more insights: https://r-7.co/45Rshje
Rapid7 gives you that same clarity across your environment—endpoint to cloud, users to attackers—with the context to act.
Watch the full interview for more insights: https://r-7.co/45Rshje
September 18, 2025 at 7:08 PM
Casinos rely on eyes in the sky to see every table and every move.
Rapid7 gives you that same clarity across your environment—endpoint to cloud, users to attackers—with the context to act.
Watch the full interview for more insights: https://r-7.co/45Rshje
Rapid7 gives you that same clarity across your environment—endpoint to cloud, users to attackers—with the context to act.
Watch the full interview for more insights: https://r-7.co/45Rshje
You may be outnumbered, but with Rapid7 MDR, you're never outmatched.
Rapid7 MDR delivers expert-led, attacker-aware detection and response across every corner of your environment.
Discover the Rapid7 MDR difference: https://r-7.co/3Ibgi8r
Rapid7 MDR delivers expert-led, attacker-aware detection and response across every corner of your environment.
Discover the Rapid7 MDR difference: https://r-7.co/3Ibgi8r
September 16, 2025 at 5:10 PM
You may be outnumbered, but with Rapid7 MDR, you're never outmatched.
Rapid7 MDR delivers expert-led, attacker-aware detection and response across every corner of your environment.
Discover the Rapid7 MDR difference: https://r-7.co/3Ibgi8r
Rapid7 MDR delivers expert-led, attacker-aware detection and response across every corner of your environment.
Discover the Rapid7 MDR difference: https://r-7.co/3Ibgi8r
September #PatchTuesday: 176 fixes, five critical RCEs, and multiple zero-days. Key priorities include SQL Server (CVE-2024-21907), Azure HPC (CVE-2025-55232), and SMB server (CVE-2025-55234).
Full analysis 👉 https://r-7.co/4m9MBm1
Full analysis 👉 https://r-7.co/4m9MBm1
September 12, 2025 at 8:18 PM
September #PatchTuesday: 176 fixes, five critical RCEs, and multiple zero-days. Key priorities include SQL Server (CVE-2024-21907), Azure HPC (CVE-2025-55232), and SMB server (CVE-2025-55234).
Full analysis 👉 https://r-7.co/4m9MBm1
Full analysis 👉 https://r-7.co/4m9MBm1
Learn from casinos. Seriously. They observe everything, manage risk tightly, and the house always wins.
Can your security program do the same? Watch the full interview for more insights: https://r-7.co/45Rshje
Can your security program do the same? Watch the full interview for more insights: https://r-7.co/45Rshje
September 4, 2025 at 7:07 PM
Learn from casinos. Seriously. They observe everything, manage risk tightly, and the house always wins.
Can your security program do the same? Watch the full interview for more insights: https://r-7.co/45Rshje
Can your security program do the same? Watch the full interview for more insights: https://r-7.co/45Rshje
Attackers don’t target assets. They exploit exposures.
Exposure Command helps you see real attack paths, validate defenses, and cut risk with confidence.
Learn more: https://r-7.co/3U7X0mE
Exposure Command helps you see real attack paths, validate defenses, and cut risk with confidence.
Learn more: https://r-7.co/3U7X0mE
September 1, 2025 at 7:11 PM
Attackers don’t target assets. They exploit exposures.
Exposure Command helps you see real attack paths, validate defenses, and cut risk with confidence.
Learn more: https://r-7.co/3U7X0mE
Exposure Command helps you see real attack paths, validate defenses, and cut risk with confidence.
Learn more: https://r-7.co/3U7X0mE
20% of breaches stem from exploited vulnerabilities.
46% come from assets VM can’t see.
Exposure Command helps you uncover risks and focus where it matters most. See how: https://r-7.co/3U7X0mE
46% come from assets VM can’t see.
Exposure Command helps you uncover risks and focus where it matters most. See how: https://r-7.co/3U7X0mE
August 27, 2025 at 5:05 PM
20% of breaches stem from exploited vulnerabilities.
46% come from assets VM can’t see.
Exposure Command helps you uncover risks and focus where it matters most. See how: https://r-7.co/3U7X0mE
46% come from assets VM can’t see.
Exposure Command helps you uncover risks and focus where it matters most. See how: https://r-7.co/3U7X0mE