World's first #CPU-level #ransomware can "bypass every freaking traditional technology we have out there" — new #firmware-based attacks could usher in new era of unavoidable ransomware
Beek, #Rapid7's senior director of threat analytics, revealed AMD Zen chip bug gave him idea that highly skilled attacker could in theory "allow those intruders to load unapproved #microcode into the processors, breaking encryption at the hardware level and modifying CPU behavior at will."
https://www.tomshardware.com/pc-components/cpus/worlds-first-cpu-level-ransomware-can-bypass-every-freaking-traditional-technology-we-have-out-there-new-firmware-based-attacks-could-usher-in-new-era-of-unavoidable-ransomware
#rapid7
Patch Tuesday, May 2025 Edition
https://krebsonsecurity.com/2025/05/patch-tuesday-may-2025-edition/
#MicrosoftPatchTuesdayMay2025 #WindowsCommonLogFileSystem #LatestWarnings #TheComingStorm #CVE-2025-30397 #CVE-2025-30400 #CVE-2025-32701 #CVE-2025-32706 #CVE-2025-32709 #ImmersiveLabs #TimetoPatch #AdamBarnett #KevBreen #Rapid7
Patch Tuesday, May 2025 Edition - Microsoft on Tuesday released software updates to fix at least 70 vulnerabilities ... https://krebsonsecurity.com/2025/05/patch-tuesday-may-2025-edition/ #microsoftpatchtuesdaymay2025 #windowscommonlogfilesystem #latestwarnings #thecomingstorm #cve-2025-30397 #cve-2025-30400 #cve-2025-32701 #cve-2025-32706 #cve-2025-32709 #immersivelabs #timetopatch #adambarnett #kevbreen #rapid7
⚠️ New cybersecurity threat alert!
A #Rapid7 researcher developed a Proof of Concept (PoC) #ransomware that infects #CPUs directly, bypassing traditional antivirus and surviving even hard drive replacements.
🔐💻 Read more:
Microsoft: 6 Zero-Days in March 2025 Patch Tuesday - Microsoft today issued more than 50 security updates for its various Windows opera... https://krebsonsecurity.com/2025/03/microsoft-6-zero-days-in-march-2025-patch-tuesday/ #cve-2025-24983 #cve-2025-24984 #cve-2025-24985 #cve-2025-24991 #cve-2025-24993 #cve-2025-26633 #securitytools #filipjurčacko #timetopatch #adambarnett #rapid7 #eset
Microsoft: 6 Zero-Days in March 2025 Patch Tuesday
https://krebsonsecurity.com/2025/03/microsoft-6-zero-days-in-march-2025-patch-tuesday/
#CVE-2025-24983 #CVE-2025-24984 #CVE-2025-24985 #CVE-2025-24991 #CVE-2025-24993 #CVE-2025-26633 #SecurityTools #FilipJurčacko #TimetoPatch #AdamBarnett #Rapid7 #ESET
We change our security tool every year, without fail. And I still can't figure out why...
2023: #AlienVault
2024: #ArcticWolf
2025: #Rapid7
Wonder what 2026 will bring…
#Rapid7's vulnerability research team says attackers exploited a PostgreSQL security flaw as a zero-day to breach the network of privileged access management company BeyondTrust in December. #PostgreSQL #zeroday #CyberAttacks https://www.bleepingcomputer.com/news/security/postgresql-flaw-exploited-as-zero-day-in-beyondtrust-breach/
Rapid7 Flags New PostgreSQL Zero-Day Connected to BeyondTrust Exploitation
https://www.securityweek.com/rapid7-flags-new-postgresql-zero-day-connected-to-beyondtrust-exploitation/
#Infosec #Security #Cybersecurity #CeptBiro #Rapid7 #PostgreSQL #ZeroDay #BeyondTrust #Exploitation
New #Rapid7 vuln disclosure c/o @stephenfewer: CVE-2025-1094 is a SQL injection flaw in PostgreSQL's psql interactive tool that was discovered while analyzing BeyondTrust RS CVE-2024-12356. The bug is interesting — 🧵on its relation to BeyondTrust exploitation https://www.rapid7.com/blog/post/2025/02/13/cve-2025-1094-postgresql-psql-sql-injection-fixed/
Microsoft Patch Tuesday, February 2025 Edition - Microsoft today issued security updates to fix at least 56 vulnerabilities in its ... https://krebsonsecurity.com/2025/02/microsoft-patch-tuesday-february-2025-edition/ #microsoftpatchtuesdayfebruary2025 #sansinternetstormcenter #microsoft365copilot #cve-2024-38193 #cve-2025-21377 #cve-2025-21391 #cve-2025-21418 #googlechrome #satnamnarang #timetopatch #adambarnett #tenable #rapid7 #other #adobe #apple
Microsoft Patch Tuesday, February 2025 Edition
https://krebsonsecurity.com/2025/02/microsoft-patch-tuesday-february-2025-edition/
#MicrosoftPatchTuesdayFebruary2025 #sansinternetstormcenter #Microsoft365Copilot #CVE-2024-38193 #CVE-2025-21377 #CVE-2025-21391 #CVE-2025-21418 #GoogleChrome #SatnamNarang #TimetoPatch #AdamBarnett #Tenable #Rapid7 #Other #adobe #apple
Patch Tuesday, December 2024 Edition
https://krebsonsecurity.com/2024/12/patch-tuesday-december-2024-edition/
#WindowsCommonLogFileSystem(CLFS)driver #LightweightDirectoryAccessProtocol #MicrosoftPatchTuesdayDecember2024 #CVE-2024-49112 #CVE-2024-49138 #ImmersiveLabs #AdamBarnett #TylerReguly #RobReeves #Tenable #Fortra #Rapid7 #Other #LDAP
Patch Tuesday, December 2024 Edition - Microsoft today released updates to plug at least 70 security holes in Windows and... https://krebsonsecurity.com/2024/12/patch-tuesday-december-2024-edition/ #windowscommonlogfilesystem(clfs)driver #lightweightdirectoryaccessprotocol #microsoftpatchtuesdaydecember2024 #cve-2024-49112 #cve-2024-49138 #immersivelabs #adambarnett #tylerreguly #robreeves #tenable #fortra #rapid7 #other #ldap
Been using #Rapid7 #InsightVM for about 3 years now. Up until last May it was a great tool. Since last may, it was a 50/50 shot if we would get any kind of reporting for newly released vulnerabilities on #PatchTuesdays .
Multiple tickets opened, multiple sessions going on for over a year. Never got a reasonable response. Finally a year on, they admitted that this was a known issue they were trying to fix, and that we were one of a few of their customers with this issue. They didn't link the two together sooner due to the way they classified our ticket.
They implemented the fix, only to follow the next month not deploying the CVE data to the region were in, so we got nothing in reporting for over 2 weeks.
I wanted to rebuild our entire environment, but they kept bulking at it, ignoring the request and so on. So now here we are, Octobers patching time and i'm back to not being able to get any data on vulnerable devices despite the console and engines having received the new updates.
Then they wanted to charge us godly amounts of money to work with us, rebuilding after our last call a few weeks ago. So despite two known issues on their end, multiple technicians and engineers unable to resolve the issue, they want more money. And so close to renewal? Not happening.
I understand corporate realignments, layoffs, etc. But dealing with this issue for over a year is uncalled for.
So now I am looking for a different product. Did have #TennableIO previously to InsightVM. The thing that really sold me on Insight was the ability to create remediation projects within the console and assign them.
Already POC'd a few other projects and believe I am going to go with Qualys.
When you have to fight with your security vendors to get a working product, it's not worth it. Hell, I didn't even get a damn hat out of the deal.
Don’t miss out on this incredible event—network, learn, and engage with the best in cybersecurity!
#TRISS2024 #Rapid7 #Cybersecurity #SteelCitySponsor #Pittsburgh
Don’t miss out on this incredible event—network, learn, and engage with the best in cybersecurity!
#TRISS2024 #Rapid7 #Cybersecurity #SteelCitySponsor #Pittsburgh
Bug Left Some Windows PCs Dangerously Unpatched
https://krebsonsecurity.com/2024/09/bug-left-some-windows-pcs-dangerously-unpatched/
#PatchTuesdaySeptember2024 #MicrosoftOffice #CVE-2024-38217 #CVE-2024-38226 #CVE-2024-43491 #ImmersiveLabs #markoftheweb #SatnamNarang #TimetoPatch #microsoft #KevBreen #Rapid7
Bug Left Some Windows PCs Dangerously Unpatched - Microsoft Corp. today released updates to fix at least 79 security vulnerabilities... https://krebsonsecurity.com/2024/09/bug-left-some-windows-pcs-dangerously-unpatched/ #patchtuesdayseptember2024 #microsoftoffice #cve-2024-38217 #cve-2024-38226 #cve-2024-43491 #immersivelabs #markoftheweb #satnamnarang #timetopatch #microsoft #kevbreen #rapid7
question for everyone. Anyone use Qualys for vulnerability management? I've had Rapid7 for 3 years and with failed support and a broken product and no help, I am looking to switch.
Want to see how Qualys stacks up against Rapid7's InsightVM.
Client Info
Server: https://mastodon.social
Version: 2025.04
Repository: https://github.com/cyevgeniy/lmst