Search results for Rapid7
Crypto
Kyber ransomware first confirmed to use post-quantum cryptography in apparent psychological tactic
Kyber ransomware has been identified as the first confirmed case of using post-quantum cryptography, drawing attention across the security industry, analysts said. Rapid7 said its review of a Windows variant found it protected encryption keys with ML-KEM1024, while files were encrypted with AES-256. Experts said the move appears aimed at psychological pressure and marketing impact rather than operational need. Some variants also made overstated claims about using ML-KEM.
AI & Enterprise
Predictive security models hit limits as shadow AI SaaS risks rise
Security companies are issuing reports on cyber threat trends, and two drew attention this week from Rapid7 and Grip Security. Rapid7 said defenders are finding it harder to keep up as attackers weaponise disclosed vulnerabilities within days, leaving little time to patch. Grip Security warned that AI embedded in SaaS applications can create risks outside enterprise control, and a breach of one AI-enabled app can spread across other AI environments and potentially to other organisations.
AI & Enterprise
Rapid7 says attackers\' speed outpaces defenders, predictive security must shift to preemptive security
Cybersecurity firm Rapid7 said predictive security that detects signals of an attack and responds accordingly is no longer effective, citing the immediate exploitation of vulnerabilities after disclosure. It said attackers weaponise flaws within days, leaving little time for vendors to issue patches and defenders to deploy them. Rapid7 pointed to internet access brokers and infostealers as key drivers and said ransomware-related leak posts rose in 2025. It urged a shift to preemptive security and exposure management.