Rapid7 Archives

Rapid7 says attacker accessed its source code in Codecov supply chain hack

Rapid7 said the accessed repositories also contained some internal credentials.

May 13, 2021 By Tim Starks

Rep. Robin Kelly, D-Ill., speaks Oct. 26, 2017, at Dell Technologies’ Digital Transformation Summit presented by FedScoop. (CyberScoop)

After years of work, Congress passes ‘internet of things’ cybersecurity bill — and it’s kind of a big deal

Sens. Mark Warner and Cory Gardner teamed up with Reps. Robin Kelly and Will Hurd to get significant cybersecurity legislation across the finish line.

Nov 23, 2020 By Tim Starks

coding software hacking developing — (Getty Images)

In search of a B.S. filter for software bugs

Call it Yelp for software flaws, with more data and context thrown in.

Apr 15, 2020 By Sean Lyngaas

aircraft, airplane, airport, aviation cybersecurity — (Getty Images)

DHS warns of vulnerability that could be used to alter flight data in small planes

The aviation sector appears to be lagging in securely implementing a popular networking standard for machinery.

Jul 30, 2019 By Sean Lyngaas

Election tech vendors say they’re securing their systems. Does anyone believe them?

Election tech companies are telling the world they are fixing their cybersecurity issues. Will the changes they make satisfy everyone ahead of 2020?

Apr 24, 2019 By Greg Otto

erase personal data — Turns out you can pull a lot of data of old computers. (Getty)

Old devices are filled with personal data, Rapid7 research finds

Wannabe thieves shopping around for personal information don’t need the dark web when they can simply look at used technology stores for second-hand devices that may come…

Mar 19, 2019 By Jeff Stone

china national vulnerability database — (flickr)

Hack of billion-dollar Norwegian firm is tied to Chinese espionage group APT10

The research underscores APT10's global reach and interest in the supply chain.

Feb 6, 2019 By Sean Lyngaas

Flaw in Guardzilla home security devices allows outsiders to view stored video, researchers say

Guardzilla’s indoor wireless security system, the GZ501W, contains hardcoded security keys rendered vulnerable by an outdated algorithm that researchers say is easy to crack.

Dec 27, 2018 By Jeff Stone

How to deal with the growing threat of massive DDoS attacks

Tod Beardsley, research director for Rapid7, talks with Greg Otto about the recent rise in DDoS attacks and what enterprises can do to guard against them.

May 7, 2018 By cyberscoop_staff Jeff Stone

How a bad Wi-Fi router flaw led to a perfect example of responsible disclosure

The story how a researcher, a security industry behemoth and a private telecom company all came together to act responsibly in order to fix a bad flaw.

Dec 19, 2017 By Shaun Waterman