6 min
Ransomware
WannaCry Update: Vulnerable SMB Shares Are Widely Deployed And People Are Scanning For Them (Port 445 Exploit)
WannaCry Overview
Last week the WannaCry ransomware worm, also known as Wanna Decryptor, Wanna
Decryptor 2.0, WNCRY, and WannaCrypt started spreading around the world, holding
computers for ransom at hospitals, government offices, and businesses. To recap:
WannaCry exploits a vulnerability in the Windows Server Message Block (SMB) file
sharing protocol. It spreads to unpatched devices directly connected to the
internet and, once inside an organization, those machines and devices behind the
firew
6 min
Research
The Data Science Process at Rapid7
Data Science is more than just math. A successful Data Science team and
successful Data Science projects require relationships with outside teams, clear
communication, as well as good decision making, problem solving and critical
thinking abilities. Thus, when we talk about Data Science at Rapid7, we talk
about the Data Science Process our teams use to take a Data Science project from
inception to completion, where math and analysis are important, but not the only
aspects of the project.
What a
3 min
Introducing RiskRater - a free tool for benchmarking endpoint, mobile and user risk management programs
Introductions
After lurking for a little while, I'm starting to write on SecurityStreet today
in order to introduce RiskRater [https://riskrater.rapid7.com/], a tool we've
been working on recently. RiskRater is an interactive free tool designed to give
security professionals a quick snapshot of how they are doing in terms of their
security controls for endpoints, mobile devices and user-based risk.
What Does RiskRater Do?
We frequently hear from security professionals that they are under consta