4 min
Consulting Services
Build Security Muscle Memory With Tabletop Exercises
What scrimmages were to football, tabletop exercises (TTX) are to incident response, business continuity, disaster recovery, vulnerability management, and other critical components of your organization’s security program.
4 min
Research
Active Exploitation of Citrix NetScaler (CVE-2019-19781): What You Need to Know
A a directory traversal vulnerability was announced in the Citrix Application Discovery Controller and Citrix Gateway, which would allow a remote, unauthenticated user to write a file to a location on disk.
5 min
Incident Detection
How Attackers Can Harvest Users’ Microsoft 365 Credentials with New Phishing Campaign
In this blog post, Rapid7's MDR services team outlines a unique phishing campaign that utilizes a novel method of scraping organizations’ branded Microsoft 365 tenant login pages to produce highly convincing credential harvesting pages.
3 min
Security Strategy
Rapid7 Named a ‘Strong Performer’ in 2019 Forrester Wave for Global Cybersecurity Consulting Providers
Being recognized as one of the “14 providers that matter most” in the global
cybersecurity consulting market by Forrester Research is an incredible honor.
Our Services business [https://www.rapid7.com/services/] has been designated a
Strong Performer, and we could not be more elated to have debuted here in our
first year participating.
The Forrester Wave™: Global Cybersecurity Consulting Providers, Q2 2019 is a
highly respected independent assessment of today’s cybersecurity consulting
market,
3 min
Rapid7 Perspective
How to Start a Career in Cybersecurity: From Stay-at-Home Mom to Security Pro-in-Training
My name is Carlota Bindner, and here is my story on how I went from being a stay-at-home mom and community volunteer to participating in Rapid7's Security Consultant Development Program.
4 min
Penetration Testing
How to Identify and Prioritize Gaps with the Cybersecurity Maturity Assessment, Post-2018 'Under the Hoodie'
At Rapid7, we believe that cybersecurity within a company is not just a function with many stakeholders, but rather a shared responsibility among all employees, regardless of role.
3 min
GDPR
MDR and GDPR: More than a lot of letters
With 2018 now well in our sights, the countdown to the General Data Protection
Regulation (GDPR) [https://www.rapid7.com/solutions/compliance/gdpr/]) is most
definitely on. Articles 33 and 34
[https://www.rapid7.com/globalassets/_pdfs/product-and-service-briefs/rapid7-solution-brief-gdpr-article-33-34.pdf]
of the GDPR [https://www.rapid7.com/fundamentals/gdpr/] require organizations to
communicate personal data breaches when there is a high risk of impact to the
people to whom the data pertains
2 min
Incident Detection
Rapid7 and NISC work together to help customers with detection and response
Rapid7 and NISC will work together to provide Managed Detection and Response (MDR) services to the NISC member base, powered by the Rapid7 Insight platform and Rapid7 Security Operation Centers (SOCs.)