2 min
Metasploit
Metasploit Weekly Wrap-Up: 1/20/23
See something say something
Have an idea on how to expand on Metasploit Documentation on
https://docs.metasploit.com/? Did you see a typo or some other error on the docs
site? Thanks to adfoster-r7 , submitting an
update to the documentation is as easy as clicking the 'Edit this page on
GitHub' link on the page you want to change. The new link will take you directly
to the source in Metasploit's GitHub so you can quickly locate the Markdown
1 min
Emergent Threat Response
Exploitation of Control Web Panel CVE-2022-44877
Security researcher Numan Türle published a proof-of-concept exploit for CVE-2022-44877 in early January. Successful exploitation has since been observed in the wild.
7 min
Emergent Threat Response
CVE-2022-47966: Rapid7 Observed Exploitation of Critical ManageEngine Vulnerability
Rapid7 is responding to various compromises arising from the exploitation of CVE-2022-47966, a vulnerability impacting at least 24 ManageEngine products.
4 min
Cloud Security
Grocery Delivery Apps: Trading Convenience for Credentials
Adoption of food apps has been incredibly fast and they are now a ubiquitous part of everyday culture. However, the tradeoff for that convenience is risk.
2 min
InsightIDR
What’s New in InsightIDR: Q4 2022 in Review
Our InsightIDR 2022 Q4 recap post offers a closer look at the recent investments and releases Rapid7 made over the past quarter.
3 min
Gartner
Gartner® Report: Questions to Ask When Selecting an MDR Provider
In an ongoing effort to help security organizations thoughtfully consider potential providers, we’re pleased to offer this complimentary Gartner® report, Quick Answer: What Key Questions Should I Ask When Selecting an MDR Provider?
2 min
Metasploit
Metasploit Weekly Wrap-Up: 1/13/23
New module content (2)
Gather Dbeaver Passwords
Author: Kali-Team
Type: Post
Pull request: #17337
contributed by cn-kali-team
Description: This adds a post exploit module that retrieves Dbeaver session data
from local configuration files. It is able to extract and decrypt credentials
stored in these files for any version of Dbeaver installed on Windows or
Linux/Unix systems.
Gather MinIO Client Key
A
2 min
XDR
2023 Extended Detection & Response (XDR) Buyer's Guide
It may be a while before we know exactly what happened with NOTAM. But, if you rely on outdated technology, it's clear that the time to act is now.
4 min
Open Source
Recog Release v3.0.3
Recog Release v3.0.3, which is available now, includes updated fingerprints for Zoho ManageEngine PAM360, Password Manager Pro, and Access Manager Plus; Atlassian Bitbucket Server; and Supervisord Supervisor.
18 min
Ransomware
Increasing The Sting of HIVE Ransomware
Recently, Rapid7 observed a malicious actor performing several new techniques for increasing the impact of HIVE ransomware a victim’s environment.
2 min
XDR
Ditch The Duct Tape: Reduce Security Sprawl With XDR
According to the Silicon Valley Business Journal, enterprises now manage an average of 76 security tools. XDR is one way security teams are dealing with the sprawl.
8 min
Vulnerability Management
Patch Tuesday - January 2023
The first Patch Tuesday of 2023 sees Microsoft patching nearly 100 CVEs, including two zero-day vulnerabilities.
5 min
InsightVM
Year in Review: Rapid7 Vulnerability Management
For the InsightVM and Nexpose team, 2022 began with a lot of introspection on how we can add more value and better meet customer needs.
3 min
Metasploit Weekly Wrapup
Metasploit Weekly Wrap-Up: Jan. 1, 2023
Back from a quiet holiday season
Thankfully, it was a relatively quiet holiday break for security this year, so
we hope everyone had a relaxing time while they could. This wrapup covers the
last three Metasploit releases, and contains three new modules, two updates, and
five bug fixes.
Make sure that your OpenTSDB isn’t too open
Of particular note in this release is a new module from community contributors
Erik Wynter and Shai rod
4 min
Research
Year in Review: Rapid7 Cybersecurity Research
Rapid7 is dedicated to conducting research that benefits the entire cybersecurity community. Here is a sampling of our efforts in 2022.