3 min
Ransomware
Decrypter FOMO No Mo’: Five Years of the No More Ransom Project
The amazing No More Ransom Project celebrates its fifth anniversary today and so we just wanted to take a moment to talk about what it has accomplished and why you should tell all your friends about it.
4 min
Metasploit
Metasploit Wrap-Up: Jul. 23, 2021
Now I Control Your Resource Planning Servers
Sage X3 is a resource planning product designed by Sage Group which is designed
to help established businesses plan out their business operations. But what if
you wanted to do more than just manage resources? What if you wanted to hijack
the resource server itself? Well wait no more, as thanks to the work of Aaron
Herndon , Jonathan Peterson
, Will
3 min
Emergent Threat Response
Microsoft SAM File Readability CVE-2021-36934: What You Need to Know
CVE-2021-36934 is a local privilege escalation vulnerability that allows non-administrative users to read the Security Account Manager (SAM) files on Windows 10 and 11 systems.
4 min
Career Development
Grow Your Career at Rapid7: North America Sales
We talked with five of our North America Account Executives to hear firsthand about how Rapid7 has supported their career growth and learning, why they would recommend Rapid7 as a great place to work, and notable deals they’ve had the unique opportunity to work on and close.
1 min
Lost Bots
[The Lost Bots] Episode 1: External Threat Intelligence
Welcome to The Lost Bots, a new vlog series where Rapid7 resident expert and former CISO, Jeffrey Gardner (virtually) sits down with fellow industry experts to spill the tea on current events and trends in the security space.
4 min
InsightIDR
Rapid7 + XDR: Security that Moves as Fast as Your Business
Making threat detection and response as agile and simple as possible enables security professionals to focus their time and energy on the most critical incidents and the things that matter most.
2 min
Product Updates
Rapid7 Acquires IntSights to Tackle the Expanding Threat Landscape
I am pleased to share the exciting news that, today, Rapid7 acquired IntSights, a leading provider of cloud-native, external threat intelligence and proactive threat remediation.
2 min
Security Operations (SOC)
Accelerating SecOps and Emergent Threat Response with the Insight Platform
Efficiency and streamlined operations are two areas where our team will continue to focus efforts in order to deliver value across Rapid7’s growing best-in-class portfolio, while enabling cross capability experiences that improve security team effectiveness.
3 min
InsightVM
What’s New in InsightVM: Q2 2021 in Review
Here is a rundown of new features and functionality launched in Q2 2021 for InsightVM and the Insight Platform.
3 min
Metasploit Weekly Wrapup
Metasploit Wrap-Up: July 16, 2021
Four new modules, with improvements to Eternal Blue support, and AmSi 0BfuSc@t!on for Powershell payloads
6 min
Detection and Response
Why the Robot Hackers Aren’t Here (Yet)
Over the years, we’ve seen security in general and vulnerability discovery in particular move from a risky, shady business to massive corporate-sponsored activities with open marketplaces for bug bounties.
9 min
Vulnerability Management
Patch Tuesday - July 2021
Microsoft has patched another 117 CVEs
, returning to
volumes seen in early 2021 and most of 2020. It would appear that the recent
trend of approximately 50 vulnerability fixes per month was not indicative of a
slowing pace. This month there were 13 vulnerabilities rated Critical with
nearly the rest being rated Important. Thankfully, none of the updates published
today require additional steps to remediate, so administrators should b
4 min
Emergent Threat Response
Managed Service Providers Used in Coordinated, Mass Ransomware Attack Impacting Hundreds of Companies
Rapid7 is aware of and tracking all information surrounding a coordinated, mass ransomware attack that appears to be targeting Kaseya VSA patch management and monitoring software.
2 min
Emergent Threat Response
SolarWinds Serv-U FTP and Managed File Transfer CVE-2021-35211: What You Need to Know
On July 12, 2021, SolarWinds confirmed an actively exploited zero-day vulnerability, CVE-2021-35211, in the Serv-U FTP and Managed File Transfer component of SolarWinds15.2.3 HF1 (released May 5, 2021) and all prior versions.
10 min
Supply Chain Security
Securing the Supply Chain: Lessons Learned from the Codecov Compromise
This blog post is meant to provide the security community with defensive knowledge and techniques to protect against supply chain attacks involving continuous integration (CI) systems