Threat Digest

A network diagram showing a central node labeled 'mdrfckr campaign' connecting to multiple external IP addresses, some with older signature icons and one with a new, updated signature icon.

[2026] Malware Evolves: Old Botnet Uses New LibSSH

The malware game is stale. Or so you thought. This aging botnet, a relic from 2018, just dropped a new flavor of its attack.

5 min read 6 days, 9 hours ago

Abstract representation of data streams and AI nodes connecting, symbolizing the generation of synthetic attack logs.

Security Tools

AI Generates Attack Logs: Is Detection Engineering Ready?

High-quality security logs are gold, but rare and costly to obtain. Now, AI is stepping in to generate synthetic attack telemetry, promising to speed up threat detection development. We're diving into whether this synthetic approach truly holds up against real-world threats.

6 min read 1 week, 3 days ago

A diagram comparing chaotic manual security detection processes with a structured code-based approach.

Security Tools

Security Detections: From Chaos to Code [Rapid7's Approach]

For years, software development has had discipline. Security detection? Not so much. Rapid7 is trying to fix that with 'Detection as Code,' a move that’s long overdue.

7 min read 2 weeks, 1 day ago

#detection-engineering

[2026] Malware Evolves: Old Botnet Uses New LibSSH

AI Generates Attack Logs: Is Detection Engineering Ready?

Security Detections: From Chaos to Code [Rapid7's Approach]