[This is a Guest Diary by Draden Barwick, an ISC intern as part of the SANS.edu Bachelor’s Degree in Applied Cybersecurity (BACS) program [1].] DShield Honeypots are constantly exposed to the internet and inundated with exploit traffic, login attempts, and other malicious activity. Analyzing the logged password attempts can help identify what attackers are targeting. To…
In today’s threat landscape, security teams face a harsh reality: attackers never rest, and defenders are stretched thin. As threats grow in volume, speed, and sophistication, the pressure on SOC teams is reaching a breaking point. That’s why we’re launching our new Managed Detection and Response (MDR) campaign with one simple truth: you may be…
In security operations, structure is a necessity. The OSCAR framework, which originated in a 2012 book about network forensics investigations, provides a disciplined approach to full scale detection and response – and it has long been the investigative backbone of the Rapid7 SOC. When stakes are high and time is limited, the framework delivers, while…
“Tumultous times” would be an accurate summary of Q2 2025 where ransomware threat actors are concerned. Rapid7’s internal and publicly-available data analysis reveals a dynamic environment where major players come and go, newer groups work their way up the heavy-hitters ladder, and threat actors jostle for top dog status. Plus, there’s law enforcement action thrown…
Security leadership isn’t just about technology. It’s about mindset, resilience, and the ability to move forward when conditions change. That message was at the heart of Command with Confidence, the closing session of the Take Command 2025 Virtual Cybersecurity Summit, led by renowned adventurers and motivational speakers The Tempest Two, and hosted by Karl Lankford,…
The modern security operations center (SOC) faces some very real challenges. Alert fatigue is constant. The workforce and skills gap continues to widen, and it’s not like it hasn’t been an issue for years. Meanwhile, attackers are evolving fast, using AI, automation, and novel tactics to stay ahead. Any MDR organization can offer some support….
Introducing streamlined navigation in the Command Platform — a faster way to get things done. We’re excited to announce an early access update for the Rapid7 Command Platform: a brand-new navigation experience built to help security analysts move faster, stay focused, and get more done. Last summer we introduced our unified threat exposure and detection…
Security teams are under immense pressure. From skyrocketing alert volumes to growing attack surface complexity, the problem isn’t just the scale of threats, it’s the tools that analysts are using. Most detection and response platforms still expect analysts to do the heavy lifting by querying logs, correlating signals, and triaging endless noise with little context…
We want to hear from you! Over the next few weeks, we’ll continue to put out user surveys on X as well as Mastodon so you can respond to some of the questions that will help us understand what you want and need from Metasploit Framework! We will also have a survey on our website during DEF…
We’re proud to announce that Qualys has been recognized as a Leader in the IDC MarketScape: Worldwide Exposure Management 2025 Vendor Assessment (doc #US52994525, August 2025). We believe this recognition underscores Qualys’ commitment to helping organizations proactively manage cyber risk with comprehensive visibility, contextualized prioritization, and integrated remediation. IDC MarketScape Recognition IDC MarketScape’s report notes,…
