所有的帖子

Ongoing Malvertising Campaign leads to Ransomware

Rapid7 has observed an ongoing campaign to distribute trojanized installers for WinSCP 和 PuTTY via malicious ads on commonly used search engines, where clicking on the ad leads to typo squatted domains.

5分钟 Gartner

Rapid7 Recognized in the 2024 Gartner® Magic Quadrant™ for SIEM

Rapid7 is excited to share that we are named a Challenger for InsightIDR in the 2024 Gartner Magic Quadrant for SIEM.

2分钟 Metasploit

Metasploit总结05/10/2024

密码喷洒支持 Multiple bruteforce/login scanner modules have been updated to support a PASSWORD_SPRAY模块选项. This work was completed in pull request #19079 [http://github.com/rapid7/metasploit-framework/pull/19079] from nrathaus [http://github.com/nrathaus] as well as an additional update from our 开发人员[http://github.com/rapid7/metasploit-framework/pull/19158] . 当 the password spraying option is set, the order of attempted users 和 password 尝试改变了

8分钟事件响应

Ongoing Social Engineering Campaign Linked to Black Basta Ransomware Operators

Rapid7 observes ongoing social engineering campaign consistent with Black Basta

2分钟 Ransomware

Layered Defense to Stop Attacks Before they Begin

Ransomware has evolved from opportunistic attacks to highly orchestrated campaigns driven by cyber criminals who are seeking high financial gains.

2分钟职业发展

Rapid7 Signs 100% Talent Compact with Boston Women’s Workforce Council

Rapid7 is proud to announce their signing of the 100% Talent Compact through the Boston Women’s Workforce Council (BWWC).

1分钟事件

Take Comm和 Summit: A Message from Rapid7 Chairman 和 CEO, Corey Thomas

Rapid7指挥峰会 [http://rapid7.brighttalk.com/?utm_source =博客&utm_medium =网站&utm_content = blog-3&utm_campaign=global-mdr-take-comm和-summmit-prospect-eng-cyas] 就剩短短两周了吗. 我们正忙着整理最 impactful programs on the latest in cybersecurity trends, technology, 和 innovations available, 和 we are eager to share it with all of you. So eager, in fact, that Chairman 和 CEO of Rapid7, Corey Thomas, has a special 分享信息.

2分钟 Metasploit

Metasploit周报05/03/24

内联转储秘密 This week, our very own cdelafuente-r7 [http://github.com/cdelafuente-r7]添加 a significant improvement to the well-known Windows Secrets Dump module [http://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/gather/windows_secrets_dump.rb] to reduce the footprint when dumping SAM hashes, LSA secrets 和 cached 凭证. The module is now directly reading the Windows Registry remotely without having to dump the full registry keys to disk 和 parse th

2分钟事件

Take Comm和峰会: A Stacked Agenda, 和 Killer Guest Speakers Coming Your Way May 21

Take Comm和峰会, Rapid7将于5月21日举行为期一天的虚拟峰会, is bringing together some of the best minds in the cybersecurity sphere for comprehensive discussions on the latest data, 挑战, 以及这个行业的机遇

4分钟

网络安全所有权业务

Cyber ownership can often be overlooked or misunderstood within an organization. Responsibility 和 accountability should not rest solely on the CISO's shoulders.

11分钟伶盗龙

迅猛龙0.7.2 Release: Digging Deeper than Ever with EWF 支持, Dynamic DNS 和 More

Rapid7 is very excited to announce that version 0.7.2 of 伶盗龙 is now fully available for download. In this post we’ll discuss some of the interesting new features.

4分钟 Metasploit

Metasploit周报04/26/24

牧场主模块 This week, Metasploit community member h00die [http://github.com/h00die]添加 the second of two modules targeting Rancher instances. 这些模块每个泄漏 sensitive information from vulnerable instances of the application which is 用于管理Kubernetes集群. 这些都是一个伟大的补充 Metasploit’s coverage for testing Kubernetes environments [http://docs.metasploit.com/docs/pentesting/metasploit-guide-kubernetes.html]. PAN-OS远端控制设备 Metasploit也发布了一份电子邮件

2分钟奖

USF College of Engineering Presents Rapid7 With 2024 Corporate Impact Award

上个星期五, 4月19日, the University of South Florida (USF) College of Engineering recognized individuals 和 organizations who have greatly impacted USF 和 beyond at its ninth annual Engineering Honors 奖 at The Armature Works in Tampa.

3分钟紧急威胁响应

Unauthenticated CrushFTP Zero-Day Enables Complete Server Compromise

CVE-2024-4040 is an unauthenticated zero-day vulnerability in managed file transfer software CrushFTP. 成功ful exploitation allows for arbitrary file read as root, authentication bypass for administrator account access, 以及远程代码执行.