4 min
Career Development
Grow Your Career at Rapid7: North America Sales
We talked with five of our North America Account Executives to hear firsthand about how Rapid7 has supported their career growth and learning, why they would recommend Rapid7 as a great place to work, and notable deals they’ve had the unique opportunity to work on and close.
1 min
Lost Bots
[The Lost Bots] Episode 1: External Threat Intelligence
Welcome to The Lost Bots, a new vlog series where Rapid7 resident expert and former CISO, Jeffrey Gardner (virtually) sits down with fellow industry experts to spill the tea on current events and trends in the security space.
4 min
InsightIDR
Rapid7 + XDR: Security that Moves as Fast as Your Business
Making threat detection and response as agile and simple as possible enables security professionals to focus their time and energy on the most critical incidents and the things that matter most.
2 min
Product Updates
Rapid7 Acquires IntSights to Tackle the Expanding Threat Landscape
I am pleased to share the exciting news that, today, Rapid7 acquired IntSights, a leading provider of cloud-native, external threat intelligence and proactive threat remediation.
2 min
Security Operations (SOC)
Accelerating SecOps and Emergent Threat Response with the Insight Platform
Efficiency and streamlined operations are two areas where our team will continue to focus efforts in order to deliver value across Rapid7’s growing best-in-class portfolio, while enabling cross capability experiences that improve security team effectiveness.
3 min
InsightVM
What’s New in InsightVM: Q2 2021 in Review
Here is a rundown of new features and functionality launched in Q2 2021 for InsightVM and the Insight Platform.
3 min
Metasploit Weekly Wrapup
Metasploit Wrap-Up: July 16, 2021
Four new modules, with improvements to Eternal Blue support, and AmSi 0BfuSc@t!on for Powershell payloads
6 min
Detection and Response
Why the Robot Hackers Aren’t Here (Yet)
Over the years, we’ve seen security in general and vulnerability discovery in particular move from a risky, shady business to massive corporate-sponsored activities with open marketplaces for bug bounties.
9 min
Vulnerability Management
Patch Tuesday - July 2021
Microsoft has patched another 117 CVEs
, returning to
volumes seen in early 2021 and most of 2020. It would appear that the recent
trend of approximately 50 vulnerability fixes per month was not indicative of a
slowing pace. This month there were 13 vulnerabilities rated Critical with
nearly the rest being rated Important. Thankfully, none of the updates published
today require additional steps to remediate, so administrators should b
4 min
Emergent Threat Response
Managed Service Providers Used in Coordinated, Mass Ransomware Attack Impacting Hundreds of Companies
Rapid7 is aware of and tracking all information surrounding a coordinated, mass ransomware attack that appears to be targeting Kaseya VSA patch management and monitoring software.
2 min
Emergent Threat Response
SolarWinds Serv-U FTP and Managed File Transfer CVE-2021-35211: What You Need to Know
On July 12, 2021, SolarWinds confirmed an actively exploited zero-day vulnerability, CVE-2021-35211, in the Serv-U FTP and Managed File Transfer component of SolarWinds15.2.3 HF1 (released May 5, 2021) and all prior versions.
10 min
Supply Chain Security
Securing the Supply Chain: Lessons Learned from the Codecov Compromise
This blog post is meant to provide the security community with defensive knowledge and techniques to protect against supply chain attacks involving continuous integration (CI) systems
2 min
Metasploit
Metasploit Wrap-Up: Jul. 9, 2021
A new module for CVE-2021-34527, dubbed PrintNightmare, and a local privilege escalation module for NSClient++
1 min
Apple
Apple Silicon Support on Insight Agent
We are pleased to announce the general availability of native support of Apple Silicon chips for the Rapid7 Insight Agent.
15 min
Detection and Response
Introducing the Manual Regex Editor in IDR’s Parsing Tool: Part 2
I will discuss here how to use Regex Editor mode, which assumes a general understanding of regular expression.