Rapid7 Named a Major Player in IDC MarketScape
Rapid7 has been named a Major Player in the IDC MarketScape: Worldwide SIEM 2026 Vendor Assessment (#US54126826, June 2026). This is the first IDC SIEM MarketScape to bring the enterprise…
Rapid7 has been named a Major Player in the IDC MarketScape: Worldwide SIEM 2026 Vendor Assessment (#US54126826, June 2026). This is the first IDC SIEM MarketScape to bring the enterprise…
Taking your feedback and followup and discussing the questions you bring us. Zero Trust Defintions, Out of Band in Zero Trust, Johna and/or Greg is/are insufferable and re-evaluating the Tech…
Sovereign Compromise: Zero-Day “MiniPlasma” Flaw Grants SYSTEM Privileges in Windows A zero-day vulnerability, designated MiniPlasma, is actively exploited within the Windows ecosystem, enabling local adversaries to achieve SYSTEM-level administrative privileges….
When a major cyber incident hits, all eyes are on the CISO. They become the invisible CEO of crisis, steering the entire enterprise through the storm, managing stakeholders and making…
Executive Summary Update (June 19, 2026): We have confirmed that the NinjaOne-related artifact referenced in this report is no longer accessible. Our investigation did not identify a vulnerability or compromise in NinjaOne’s platform. The campaign relied…
CISA’s new directive officially ends federal agencies’ reliance on static vulnerability scores. Learn how Tenable One helps federal agencies pivot to dynamic asset exposure, threat validation, and AI-powered automation to…
Connecting OpenClaw to Ollama, and protecting it with DefenseClaw. Black Hat Asia gave me a practical environment to test an idea I have been thinking about for a while: how can we bring AI into…
For the latest discoveries in cyber research for the week of 15th June, please download our Threat Intelligence Bulletin. TOP ATTACKS AND BREACHES The University of Nottingham, a UK research…
This week on Experts on Experts, I sat down with Sabeen Malik, Rapid7’s VP of Global Government Affairs and Public Policy, to discuss a shift security leaders can’t afford to…
Introduction CVE-2026-9082 is a critical pre-authentication SQL injection vulnerability in Drupal Core’s JSON:API module, carrying a CVSS score of 9.8. Published on May 20, 2026, it was added to the…