2 min
Gartner
Three Takeaways from the Gartner® Report: How to Grow Vulnerability Management Into Exposure Management
Latest research from Gartner, How to Grow Vulnerability Management Into Exposure Management, highlights the need for security teams to move beyond simply tracking vulnerabilities and embrace a more comprehensive approach to exposure management.
3 min
Managed Detection and Response (MDR)
Reinforcing resilience with financial assurance: Breach protection matters now more than ever
Introducing Rapid7’s value-added Breach Protection Warranty that delivers confidence, clarity, and coverage when it matters most.
3 min
InsightIDR
InsightIDR AI Alert Triage Automatically Classifies Alerts with 99.93% Accuracy
Rapid7's AI Alert Triage – trained and tested by the Rapid7 global MDR service across trillions of alerts worldwide — will soon be available to users of our next-gen SIEM, InsightIDR, at no additional cost.
5 min
Managed Detection and Response (MDR)
Deepening the MDR partnership: Rapid7 now delivers Active Remediation with Velociraptor
Powered by our best-in-class, open-source digital forensics and incident response (DFIR) tool, Rapid7 MDR analysts can take direct, approved remediation actions on your behalf.
4 min
Exposure Command
Driving down MTTR with Remediation Hub, Available in Rapid7 Exposure Command
Rapid7’s Remediation Hub enables security teams to go beyond simply identifying vulnerabilities and focus more on remediating risk.
5 min
Exposure Command
From Exposure to Assurance: Unified Remediation Across the Security Lifecycle
Rapid7’s Exposure Command directly addresses this gap, combining advanced risk-based vulnerability management (RBVM) with environmental context, threat intelligence, and native workflow automation.
2 min
Exposure Command
Introducing Rapid7’s Exposure Assessment Platform Buyer’s Guide
To help organizations navigate this rapidly changing threat landscape, we are excited to introduce the Exposure Assessment Platform (EAP) Buyer’s Guide.
3 min
Emergent Threat Response
Active exploitation of SAP NetWeaver Visual Composer CVE-2025-31324
A critical SAP NetWeaver zero-day vulnerability (CVE-2025-31324) that allows for full SAP server compromise is being actively exploited in the wild.
4 min
Metasploit
Metasploit Wrap-Up 04/25/2025
AD CS workflow improvement with new PKCS12 features
Given the increasing popularity of AD CS misconfiguration exploitation in recent
years, Metasploit has been consistently improving its capabilities in this area.
This week’s release introduces a new certs command to the msfconsole, enabling
users to manage PKCS12 certificates stored in the database, similar to the klist
command
2 min
Managed Detection and Response (MDR)
THE NEW Rapid7 MDR for Enterprise: Tailored Detection and Response for Complex Environments
We’re excited to introduce Rapid7 MDR for Enterprise—a fully managed, customized detection and response service designed to meet the complexity of the modern enterprise head-on.
5 min
Threat Intel
From Noise to Action: Introducing Intelligence Hub
We are delighted to announce the availability of Intelligence Hub, an evolution in threat intelligence delivery that is designed to provide meaningful context and actionable insights integrated with the Rapid7 Command Platform.
2 min
Events
Top Lessons from Take Command 2025
Take Command 2025 delivered big insights on AI, exposure management, red teaming, and cloud defense. Catch up with on-demand sessions.
2 min
Metasploit
Metasploit Wrap-Up 04/18/2025
Smaller Fetch Payloads
This week, a significant enhancement was made to the already awesome fetch
payload
feature by our very own bwatters-r7 . The
improvement introduces a new option, PIPE_FETCH, which optimizes the process by
serving both the payload and the command to be executed simultaneously.
This enhancement directly addresses the challenge of limited s
1 min
Vulnerability Management
Following the News: MITRE’s Common Vulnerabilities and Exposures (CVE) Funding
Rapid7 continues to monitor both public and private discussions closely in its capacity as a CVE Numbering Authority (CNA) and as a longtime leader and participant in the CVE ecosystem.
2 min
Events
Take Command 2025: A Day of Insight, Innovation, and Impact
Explore top insights from Take Command 2025—ransomware, AI, red teaming, and more. All sessions now available on demand.
