Skip to main content
FreeIntelHub
Feed Threat Feed Search Trending
Intelligence CVE Priority Vulnerability IOC Lookup IOC Feed YARA Rules Phishing Lookup Exploit Lookup Pastes Dark Web
Adversaries Threat Groups Software Campaigns
Explore Dashboard Geo Map Heatmap MITRE ATT&CK
Browse Sources Vendors Categories Sectors
RSS API
FreeIntelHub
/
Sign In

Rapid7

20 articles

Rapid7 Blog General Rapid7 2d ago

Security Teams Are Ready To Become More Preemptive. What’s Holding Them Back?

The shift toward preemptive security is underway, but most organizations are still navigating the realities of limited resources, fragmented tools, and emerg...

T1598

Rapid7 Blog →

Rapid7 Blog Vulnerability Disclosure Rapid7 Jul 2

Formalizing Red Teaming Offensive Methodology as a Multi-Agent AI Architecture

Threat actors are integrating AI into their exploit chains, accelerating reconnaissance, automating vulnerability discovery, and scaling social engineering i...

T1204 T1592

Rapid7 Blog →

Rapid7 Blog General Rapid7 Jul 1

5 Myths About AI in the SOC Security Teams Need to Rethink

AI is now part of almost every conversation in security operations. Most teams are already investing in it, experimenting with it, or trying to understand wh...

Rapid7 Blog →

Rapid7 Blog General Rapid7 Jun 26

Weekly Metasploit Update: Modules for Audiobookshelf, LiteLLM, Next.js, Dalfox and more

Help shape the future of Metasploit Framework We are planning future work in relation to the evasion capabilities present in Metasploit Framework, and how th...

Rapid7 Blog →

Rapid7 Blog Vulnerability Disclosure Rapid7 Jun 25

Experts on Experts: Why AI and Compliance Are Forcing A New Security Operating Model

This week on Experts on Experts, I sat down with Sabeen Malik, Rapid7’s VP of Global Government Affairs and Public Policy, to discuss a shift security leader...

Rapid7 Blog →

Rapid7 Blog General Rapid7 Jun 18

Why Security Teams Need To Start Earlier

Security leaders are facing an unusual set of circumstances. The drumbeat for better security prioritization has been rising for years in boardrooms around t...

Rapid7 Blog →

Rapid7 Blog General Rapid7 Jun 15

Does Your Security Programme Align With NIS2 Requirements?

If your organization operates in the EU, or works with organizations that do, NIS2 is no longer something on the horizon. It is here and it applies to a far ...

Rapid7 Blog →

Rapid7 Blog TTPs Rapid7 Intel Jun 10

Automated Threat Hunting: Turning Threat Intelligence into Executable Hunt Plans

Blake McDermott is Senior Threat Hunter at Rapid7. Every week, threat hunt teams are faced with a steady flow of blogs, advisories, and DFIR reports containi...

Rapid7 Blog →

Rapid7 Blog General Rapid7 Jun 9

Rapid7 Gains Access To Anthropic’s Project Glasswing To Explore Frontier AI For Cybersecurity

Wade Woolwine is Senior Director, Product Security at Rapid7. Rapid7 is excited to join Anthropic’s Project Glasswing, which includes access to Claude Mythos...

Rapid7 Blog →

Rapid7 Blog General Rapid7 Jun 3

A Day in the Life of an MDR Analyst: Inside the Modern SOC

What actually happens inside a SOC when an incident unfolds? Most teams see the alerts and the outcomes, but the decision-making in between is often less vis...

Rapid7 Blog →

The Hacker News Data Breach Rapid7 Jun 3

Beyond the Zero-Day: See Your Network Like an Attacker | Webinar with HD Moore

Assume the breach. Zero-days keep shipping, AI is writing exploits faster than anyone patches, and "patch everything in time" stopped working years ago.

The Hacker News →

Security Affairs CVE Rapid7 Jun 3

Why an HP Poly VoIP Phones Bug Could Become an Enterprise Foothold

Rapid7 details a critical unauthenticated overflow in HP Poly VoIP phones that can lead to root RCE, with patches available for affected models. Rapid7’s lat...

T1598 1 IOC

Security Affairs →

CSO Online CVE Rapid7 Jun 2

HP Poly VoIP vulnerability sets the stage for executive voice deepfakes

HP has released patches for a critical buffer overflow vulnerability in multiple IP-enabled conference phones from its Poly Voice line. The flaw allows unaut...

1 IOC

CSO Online →

Rapid7 Blog Zero-Day Rapid7 Jun 1

CVE-2026-0826: Critical unauthenticated stack buffer overflow in HP Poly VVX and Trio VoIP Phones (FIXED)

Overview Rapid7 Labs conducted a zero-day research project against an HP Poly VVX 450 Voice over Internet Protocol (VoIP) phone. This research resulted in th...

T1190 1 IOC

Rapid7 Blog →

Rapid7 Blog General Rapid7 Jun 1

Rapid7 and Exclusive Networks Expand Partnership Across the Nordics

Building stronger cybersecurity outcomes together The cybersecurity landscape across the Nordics is evolving rapidly. Organizations are facing increasing pre...

Rapid7 Blog →

GBHackers Vulnerability Disclosure Rapid7 May 29

New Gogs 0-Day Flaw Enables Remote Code Execution on Servers

A new 0-day vulnerability in Gogs, a popular self-hosted Git service, allows authenticated users to run arbitrary commands on the server and potentially take...

T1190

GBHackers →

CSO Online Vulnerability Disclosure Rapid7 May 29

Lack of response to critical vulnerability in Gogs is a reminder of the limits of open source projects

A newly discovered and so far unpatched critical vulnerability in the open source Gogs Git service not only demands immediate action from developers to secur...

CSO Online →

The Hacker News Vulnerability Disclosure Rapid7 May 28

Critical Gogs RCE Vulnerability Lets Any Authenticated User Execute Arbitrary Code

A critical security vulnerability has been disclosed in Gogs, a popular open-source self-hosted Git service, that allows an authenticated user to execute arb...

T1190

The Hacker News →

Rapid7 Blog General Rapid7 May 28

Experts on Experts: Why Compliance is becoming Continuous

This week on Experts on Experts, I’m joined by Sergio Alonso – Rapid7’s Director of Trust, Risk, and Compliance – to talk about how compliance is changing an...

T1598

Rapid7 Blog →

Rapid7 Blog Vulnerability Disclosure Rapid7 May 28

Authenticated RCE via Argument Injection in Gogs (NOT FIXED)

Overview Rapid7 Labs discovered a critical argument injection (CWE-88) vulnerability in Gogs, a popular open-source self-hosted Git service. Rapid7 Labs scor...

T1190

Rapid7 Blog →

1 2 Next page»
FreeIntelHub · Open-source CTI platform

All articles belong to their respective owners. FreeIntelHub aggregates publicly available RSS feeds for informational purposes only. DMCA