Skip to main content
FreeIntelHub
Feed Threat Feed Search Trending
Intelligence CVE Priority Vulnerability IOC Lookup IOC Feed YARA Rules Phishing Lookup Exploit Lookup Pastes Dark Web
Adversaries Threat Groups Software Campaigns
Explore Dashboard Geo Map Heatmap MITRE ATT&CK
Browse Sources Vendors Categories Sectors
RSS API
FreeIntelHub
/
Sign In

Rapid7 Blog

20 articles

Rapid7 Blog General Rapid7 2d ago

Security Teams Are Ready To Become More Preemptive. What’s Holding Them Back?

The shift toward preemptive security is underway, but most organizations are still navigating the realities of limited resources, fragmented tools, and emerg...

T1598

Rapid7 Blog →

Rapid7 Blog General 4d ago

A Day With Your Vector Command Red Team Pod

Anyone trying to understand continuous red teaming usually gets the same high-level explanation: it is ongoing, attacker-informed, and designed to uncover ri...

Rapid7 Blog →

Rapid7 Blog Vulnerability Disclosure Microsoft Rapid7 6d ago

Weekly Metasploit Update: Modules for SMB-to-Meterpreter, Peyara Remote Mouse RCE exploit, and more

It's Time to Upgrade Your SMB Session This week, Metasploit contributor Dean Welch has added an SMB to Meterpreter session upgrade module. It uses PsExec to ...

T1190 T1021

Rapid7 Blog →

Rapid7 Blog Vulnerability Disclosure Microsoft Rapid7 6d ago

Weekly Metasploit Update: Modules for SMB-to-Meterpreter, Peyara Remote Mouse RCE exploit, and more

It's Time to Upgrade Your SMB Session This week, Metasploit contributor Dean Welch has added an SMB to Meterpreter session upgrade module. It uses PsExec to ...

T1190 T1021

Rapid7 Blog →

Rapid7 Blog Vulnerability Disclosure Rapid7 Jul 2

Formalizing Red Teaming Offensive Methodology as a Multi-Agent AI Architecture

Threat actors are integrating AI into their exploit chains, accelerating reconnaissance, automating vulnerability discovery, and scaling social engineering i...

T1204 T1592

Rapid7 Blog →

Rapid7 Blog General Rapid7 Jul 1

5 Myths About AI in the SOC Security Teams Need to Rethink

AI is now part of almost every conversation in security operations. Most teams are already investing in it, experimenting with it, or trying to understand wh...

Rapid7 Blog →

Rapid7 Blog Vulnerability Disclosure Jun 29

Modernizing Global Vulnerability Standards For The Age Of AI

As AI-driven vulnerability discovery accelerates, the cybersecurity ecosystem is being forced to examine whether the standards, disclosure processes, and pri...

Rapid7 Blog →

Rapid7 Blog General Rapid7 Jun 26

Weekly Metasploit Update: Modules for Audiobookshelf, LiteLLM, Next.js, Dalfox and more

Help shape the future of Metasploit Framework We are planning future work in relation to the evasion capabilities present in Metasploit Framework, and how th...

Rapid7 Blog →

Rapid7 Blog Vulnerability Disclosure Rapid7 Jun 25

Experts on Experts: Why AI and Compliance Are Forcing A New Security Operating Model

This week on Experts on Experts, I sat down with Sabeen Malik, Rapid7’s VP of Global Government Affairs and Public Policy, to discuss a shift security leader...

Rapid7 Blog →

Rapid7 Blog Vulnerability Disclosure Microsoft Rapid7 Jun 19

Weekly Metasploit Update: NTLM Relay Priv Esc, MCP Server Integration, Paperclip AI RCE Chain, and more

This week's release includes five new modules, including a full unauthenticated RCE chain for Paperclip AI and a VS Code extension persistence technique.

T1548

Rapid7 Blog →

Rapid7 Blog General Rapid7 Jun 18

Why Security Teams Need To Start Earlier

Security leaders are facing an unusual set of circumstances. The drumbeat for better security prioritization has been rising for years in boardrooms around t...

Rapid7 Blog →

Rapid7 Blog TTPs Microsoft Rapid7 Jun 17

Malware à la Mode: Tracking Dropping Elephant Tradecraft Through a China-Themed Loader Chain

Executive summary Rapid7 researchers have identified a sophisticated malware campaign attributed to the threat actor "Dropping Elephant," characterized by th...

Rapid7 Blog →

Rapid7 Blog Supply Chain Jun 15

NIS2 is raising the bar. Here’s how to turn readiness into resilience.

The NIS2 directive asks covered organizations to take a more structured approach to risk management, governance, supply chain security, and incident reportin...

Rapid7 Blog →

Rapid7 Blog General Rapid7 Jun 15

Does Your Security Programme Align With NIS2 Requirements?

If your organization operates in the EU, or works with organizations that do, NIS2 is no longer something on the horizon. It is here and it applies to a far ...

Rapid7 Blog →

Rapid7 Blog General Jun 15

Beyond the Score: Using AI to Translate CVEs into Real-World Business Risk

Security leaders rarely struggle to gather data, but they often struggle to turn that data into something clear and meaningful for the business. In a typical...

T1598

Rapid7 Blog →

Rapid7 Blog General Google Rapid7 Jun 13

Weekly Metasploit Update: New Kerberos/Certificate tracing options, and multiple new modules

New Tracing Options As hard as we try to ensure that Metasploit is bug free, issues inevitably come up. Whether you’re running a module on an op or writing a...

Rapid7 Blog →

Rapid7 Blog Zero-Day Oracle Jun 12

Active Exploitation of Oracle PeopleSoft Zero-Day (CVE-2026-35273)

Overview On June 10, 2026, Oracle published a security alert for CVE-2026-35273, a critical vulnerability in the Updates Environment Management component of ...

T1190 1 IOC

Rapid7 Blog →

Rapid7 Blog TTPs Rapid7 Intel Jun 10

Automated Threat Hunting: Turning Threat Intelligence into Executable Hunt Plans

Blake McDermott is Senior Threat Hunter at Rapid7. Every week, threat hunt teams are faced with a steady flow of blogs, advisories, and DFIR reports containi...

Rapid7 Blog →

Rapid7 Blog CVE Ivanti Jun 10

CVE-2026-10520, CVE-2026-10523 - Multiple critical vulnerabilities affecting Ivanti Sentry

Overview On June 9, 2026, Ivanti published a security advisory for two critical vulnerabilities affecting Ivanti Sentry (formerly known as MobileIron Sentry)...

T1190 T1059 2 IOCs

Rapid7 Blog →

Rapid7 Blog Advisory Microsoft Jun 9

Patch Tuesday - June 2026

Microsoft is publishing 200 vulnerabilities on June 2026 Patch Tuesday. Microsoft is not aware of exploitation in the wild for any of these vulnerabilities, ...

Rapid7 Blog →

1 2 3 4 Next page»
FreeIntelHub · Open-source CTI platform

All articles belong to their respective owners. FreeIntelHub aggregates publicly available RSS feeds for informational purposes only. DMCA