10分钟
管理检测和响应(耐多药)
Malvertising Campaign Leads to Execution of Oyster Backdoor
Rapid7 has observed a recent malvertising campaign that lures users into downloading malicious installers for popular software such as Google Chrome 和 Microsoft Teams.
8分钟
事件响应
Ongoing Social Engineering Campaign Linked to Black Basta Ransomware Operators
Rapid7 observes ongoing social engineering campaign consistent with Black Basta
7分钟
事件响应
RCE到silver:来自战场的IR故事
Rapid7 事件响应 was engaged to investigate an incident involving unauthorized access to two publicly-facing Confluence servers that were the source of multiple malware executions.
5分钟
高飞
Grey Time: The Hidden Cost of 事件响应
The time cost of incident response for security teams may be greater – 和更多的 complex – than we’ve been assuming.
1分钟
公共政策
Incident Reporting Regulations Summary 和 Chart
A growing number of regulations require organizations to report cybersecurity incidents. This chart summarizes 11 proposed 和 current cyber incident reporting regulations 和 breaks down their common elements, 如须报谁, 什么事件必须报告, 最后期限, 和更多的.
9分钟
公共政策
Avoiding Smash 和 Grab Under the SEC’s Proposed Cyber Rule
The SEC proposed a rule to require companies to publicly report cybersecurity incidents. This post explains why public disclosure of an incident before mitigation or containment raises the risk of harm, 和 suggests a solution that avoids harm while still promoting disclosure.
5分钟
脆弱性管理
How to Strategically Scale Vendor Management 和 Supply Chain Security
Here are simple changes that can help you provide more impactful supply chain security guidance 和 controls to decrease risk.
3分钟
检测和响应
Sharpen Your IR Capabilities With Rapid7’s 检测和响应 Workshop
Rapid7's 检测和响应 Workshop helps you determine if your tools can immediately detect 和 respond to threats.
4分钟
公共政策
New US Law to Require Cyber Incident Reports
The Cyber Incident Reporting for Critical Infrastructure Act of 2022 will require critical infrastructure owners 和 operators to report cyber incidents 和 ransomware payments. This post will walk through highlights from the new law.
3分钟
检测和响应
Cybersecurity as Digital Detective Work: DFIR 和 Its 3 Key Components
We highlight 3 elements of a well-formulated digital forensics 和 incident response (DFIR) strategy.
3分钟
事件响应
Energize Your 事件响应 和 脆弱性管理 With Crowdsourced Automation Workflows
Bringing the spirit of open source to security workflow automation can help you detect 和 address breaches quickly, 在它们成为重大事件之前.
2分钟
事件响应
Rapid7对Codecov事件的回应
Cybersecurity is Rapid7’s top priority, 和 when there is an incident that may
pose a risk to our customers, we are transparent about it. 我们也相信
providing this level of transparency ultimately helps the security community
better address potential pending threats 和 safeguard themselves from future
攻击. With this in mind, we want to share an update concerning the security
incident disclosed by Codecov 和 its potential impact on our company 和
客户,以及我们是如何管理的
5分钟
管理检测和响应(耐多药)
耐多药 Vendor Must-Haves, Part 8: Rapid7 事件响应 (Breach) 支持
Having the best threat detection methodologies, a streamlined 和 efficient process for validating threats, 和 a rock-solid reporting st和ard may still leave you open to unexpected costs.
4分钟
检测和响应
攻击和. Data: What You Need to Know About Threat Hunting
While the definition of threat hunting may be straightforward—proactively hunting for threats—the reality of implementing a threat-hunting program is a bit more complicated, as there are different threat-hunting methodologies to choose from.
1分钟
检测和响应
InsightIDR’s NTA Capabilities Exp和ed to AWS
We’re excited to announce we have expanded the Network Traffic Analysis (NTA) capabilities in InsightIDR to support Amazon Web 服务 (AWS) environments.