Rapid7 Delivers Smarter Network Security with Curated Intelligence Rules for AWS Network Firewall
Rapid7 (NASDAQ: RPD) launched Curated Intelligence Rules for AWS Network Firewall on November 20, 2025 to deliver Rapid7 Labs threat intelligence directly into native AWS environments.
The offering converts vetted Indicators of Compromise into high-quality, deployable rule groups that aim to reduce manual rule maintenance, close coverage gaps, and lower alert fatigue. Key features include region-specific curated rule sets, a proprietary Decay Scoring system that retires stale IOCs, AWS-validated updates, and transparent per-GB metering. Use cases noted include blocking ransomware C2, detecting reconnaissance, preventing exfiltration, and identifying phishing domains.
Rapid7 (NASDAQ: RPD) ha lanciato Curated Intelligence Rules for AWS Network Firewall il 20 novembre 2025 per fornire l'intelligence sulle minacce di Rapid7 Labs direttamente negli ambienti AWS nativi.
L'offerta converte Indicatori di Compromissione verificati in gruppi di regole di alta qualità e facilmente implementabili che mirano a ridurre la manutenzione manuale delle regole, chiudere le lacune di copertura e diminuire la fatica degli avvisi. Le principali caratteristiche includono set di regole curati specifici per regione, un sistema proprietario Decay Scoring che ritira IOC obsoleti, aggiornamenti convalidati AWS e metering trasparente per GB. I casi d'uso menzionati includono bloccare il ransomware C2, rilevare ricognizione, prevenire l'esfiltrazione e identificare domini di phishing.
Rapid7 (NYSE: RPD) lanzó Curated Intelligence Rules for AWS Network Firewall el 20 de noviembre de 2025 para entregar la inteligencia de amenazas de Rapid7 Labs directamente en entornos nativos de AWS.
La oferta convierte Indicadores de Compromiso verificados en grupos de reglas de alta calidad y desplegables que pretenden reducir el mantenimiento manual de reglas, cerrar lagunas de cobertura y disminuir la fatiga de alertas. Las características clave incluyen conjuntos de reglas curados específicos por región, un sistema propietario de Decay Scoring que retira IOC obsoletos, actualizaciones validadas por AWS y medición transparente por GB. Los casos de uso mencionados incluyen bloquear C2 de ransomware, detectar reconocimiento, prevenir la exfiltración e identificar dominios de phishing.
Rapid7 (나스닥: RPD)는 2025년 11월 20일 AWS Network Firewall용 Curated Intelligence Rules를 출시하여 Rapid7 Labs의 위협 인텔리전스를 AWS 내 원주민 환경으로 직접 제공합니다.
이 오퍼링은 검증된 위협 인식 지표(IOCs)을 고품질의 배치 가능한 규칙 그룹으로 변환하여 수작업 규칙 유지 관리, 커버리지 격차 해소, 경보 피로를 줄이는 것을 목표로 합니다. 주요 기능으로는 지역별로 선별된 규칙 세트, 만료된 IOC를 폐기하는 독점 Decay Scoring 시스템, AWS에서 검증된 업데이트 및 투명한 GB당 계량이 포함됩니다. 언급된 사용 사례로는 랜섬웨어 C2 차단, 정찰 탐지, 데이터 탈출 방지, 피싱 도메인 식별 등이 있습니다.
Rapid7 (NYSE: RPD) a lancé le Curated Intelligence Rules for AWS Network Firewall le 20 novembre 2025 pour livrer l’intelligence des menaces Rapid7 Labs directement dans les environnements natifs AWS.
L’offre convertit des Indicateurs de Compromission vérifiés en groupes de règles de haute qualité et déployables, visant à réduire la maintenance manuelle des règles, combler les lacunes de couverture et diminuer la fatigue des alertes. Les caractéristiques clés incluent des ensembles de règles triés par région, un système propriétaire Decay Scoring qui retire les IOC obsolètes, des mises à jour validées par AWS et une tarification transparente par Go. Les cas d’usage mentionnés incluent le blocage du C2 de ransomware, la détection du reconnaissance, la prévention de l’exfiltration et l’identification des domaines de phishing.
Rapid7 (NASDAQ: RPD) hat am 20. November 2025 Curated Intelligence Rules for AWS Network Firewall eingeführt, um Bedrohungsinformationen von Rapid7 Labs direkt in native AWS-Umgebungen zu liefern.
Das Angebot wandelt verifizierte Indicators of Compromise in hochwertige, einsatzbereite Regelgruppen um, die darauf abzielen, manuelle Regelwartung zu reduzieren, Abdeckungslücken zu schließen und Warnmeldungen weniger ermüdend zu gestalten. Zu den Hauptmerkmalen gehören regionsspezifische kuratierte Regelsets, ein proprietäres Decay Scoring-System, das veraltete IOCs entfernt, von AWS validierte Updates und transparente Abrechnung pro GB. Erwähnte Anwendungsfälle umfassen das Blockieren von Ransomware-C2, das Erkennen von Reconnaissance, das Verhindern von Exfiltration und das Identifizieren von Phishing-Domains.
Rapid7 (ناسداك: RPD) أطلقت Curated Intelligence Rules for AWS Network Firewall في 20 نوفمبر 2025 لتوفير معلومات تهديد Rapid7 Labs مباشرة في بيئات AWS الأصلية.
يحوّل العرض مؤشرات الاختراق المختبرة إلى مجموعات قواعد عالية الجودة وقابلة للنشر تهدف إلى تقليل صيانة القواعد اليدوية، وسد فجوات التغطية، وخفض إرهاق التنبيهات. تشمل الميزات الرئيسية مجموعات قواعد مكرّسة حسب المنطقة، ونظام Decay Scoring الملكي الذي يتقاعد مؤشرات IOC قديمة، وتحديثات معتمدة من AWS، وقياس شفاف بالجيجابايت. تشمل حالات الاستخدام المذكورة حجب C2 لبر ransomware، وكشف الاستطلاع، ومنع التسريب، وتحديد نطاقات التصيد.
- Native integration with AWS Network Firewall for one-click deployment
- Automated Decay Scoring that retires stale IOCs
- Region-specific curated rule sets to reduce alert fatigue
- AWS-validated updates and transparent per-GB metering
- None.
Insights
Rapid7's curated AWS Network Firewall rules simplify cloud network defense and aim to reduce operational load for security teams.
Rapid7 converts vetted Indicators of Compromise from Rapid7 Labs into ready-made rule groups deployable inside AWS Network Firewall, promising automated, low-noise detection, region-specific intelligence, and a proprietary Decay Scoring mechanism to retire stale IOCs. The offering targets routine operational pain: manual rule creation, high alert noise, and coverage gaps, while delivering AWS-validated updates and transparent per-GB metering.
The immediate dependencies and risks are clear: effectiveness depends on the quality and relevance of Rapid7 Labs' ingest sources (honeypots, open-source projects, proprietary research) and on customers’ willingness to trust managed rule groups in their native AWS environments. Integration friction, false positives/negatives, and the pace of threat evolution remain operational risks despite automated decay and ML-assisted validation.
Concrete items to watch in the near term include customer adoption metrics in the
BOSTON, Nov. 20, 2025 (GLOBE NEWSWIRE) -- Rapid7, Inc. (NASDAQ: RPD), a leader in threat detection and exposure management, today announced the launch of Curated Intelligence Rules for AWS Network Firewall to deliver industry-leading, curated threat intelligence directly into customers’ native AWS environments. This new offering empowers organizations to scale their cloud defenses effortlessly and reduce the significant operational overhead associated with managing network security rules.
Managing and manually updating firewall rules to keep pace with evolving threat actors is a resource-intensive task that often leaves security teams with coverage gaps. Rapid7 converts curated intelligence on relevant Indicators of Compromise (IOCs) from Rapid7 Labs into high-quality rule groups, delivering expert-vetted threat intelligence directly within an organization's AWS environment. By providing this intelligence directly into AWS Network Firewall, Rapid7 Curated Intelligence Rules removes these coverage gaps, enabling immediate, high-quality protection against real-world threats.
“Integrating our Curated Intelligence Rules directly with AWS Network Firewall transforms world-class threat intelligence into instant, actionable protection. Customers can now deploy defense backed by Rapid7 Labs’ research with just a few clicks, ensuring their security scales as dynamically as their AWS environment,” said Craig Adams, chief product officer at Rapid7. “This is game changing for security teams dealing with the complexity associated with a proliferation of manual rule creation and maintenance.”
Harnessing industry-leading threat intelligence
Rapid7’s approach to Curated Intelligence Rules is built on three core principles:
- Focus on quality over quantity: Rules emphasize meaningful, low-noise detection directly aligned with current, real-world threats, significantly reducing alert fatigue.
- Curated global intelligence: Rule sets are powered by high-quality, region-specific data from unique sources, providing unparalleled visibility and context for actionable detections.
- Dynamic and self-cleaning rule sets: Threat intelligence is not static. Using Rapid7’s proprietary Decay Scoring system, rules are automatically retired when an IOC passes a certain threshold, ensuring the delivered intelligence is always fresh, relevant, and current.
The operational advantage
Rapid7 Curated Intelligence Rules for AWS Network Firewall deliver immediate and tangible value, allowing security teams to achieve a significant operational advantage:
- Automate threat protection: Reduce overhead with continuously updated, curated detections delivered natively within AWS Network Firewall.
- Adopt protections faster: Deploy protections backed by industry-leading threat intelligence from Rapid7 Labs with just a few clicks in the AWS console.
- Maintain predictable operations: Benefit from AWS-validated updates, transparent per-GB metering, and clear rule-group metadata.
These rule sets provide practical defense against a wide range of attack scenarios, including blocking command and control (C2) communication from known ransomware families, detecting network reconnaissance activity, preventing data exfiltration, and identifying traffic to malicious domains used in phishing campaigns.
The curated intelligence that powers Rapid7 Curated Intelligence Rules is derived from ingestion sources that are unique to Rapid7, such as honeypot data and proprietary research, as well as insights from Rapid7’s open source initiatives and research communities. These include Metasploit, AttackerKB, and other global communities that make Rapid7’s reach into understanding the threatscape both broader and deeper. Expertly crafted machine learning (ML) models combined with manual verification from the Rapid7 Labs team provide additional layers of validation.
“In today’s cloud environments, the sheer velocity of new threat campaigns demands more than volume-based threat feeds. It demands curated, high-fidelity intelligence. With Rapid7 Curated Intelligence Rules for AWS Network Firewall, we’re cutting through the noise to give security teams the clarity and confidence they need to focus on what truly matters,” said Raj Samani, chief scientist at Rapid7. “Our curated, continuously refined intelligence empowers defenders to disrupt adversaries faster and maintain protection that evolves as dynamically as the threats themselves."
This new integration comes at a time when cybercriminals are accelerating the pace of vulnerability exploitation following disclosure. Rapid7’s recent Q3 Threat Landscape Report identified a significant number of threat actor campaigns exploiting software vulnerabilities. Integrated threat intelligence is a crucial component in successfully warding off such attacks.
Learn more about Rapid7 in AWS Marketplace here.
About Rapid7
Rapid7, Inc. (NASDAQ: RPD) is on a mission to create a safer digital world by making cybersecurity simpler and more accessible. We empower security professionals to manage a modern attack surface through our best-in-class technology, leading-edge research, and broad, strategic expertise. Rapid7’s comprehensive security solutions help more than 11,000 global customers unite cloud risk management with threat detection and response to reduce attack surfaces and eliminate threats with speed and precision. For more information, visit our website, check out our blog, or follow us on LinkedIn or X.
Rapid7 Media Relations
Alice Randall
Director, Global Communications
press@rapid7.com
(857) 216-7804
Rapid7 Investor Contact
Ryan Gardella / Ryan Flanagan
ICR, Inc
investors@rapid7.com
(617) 865-4277
FAQ
What are Rapid7 Curated Intelligence Rules for AWS Network Firewall (RPD)?
How do RPD Curated Intelligence Rules reduce operational overhead?
What is Decay Scoring in Rapid7's RPD rule sets and why does it matter?
Which attack scenarios do RPD Curated Intelligence Rules aim to address?
When did Rapid7 announce the AWS Network Firewall integration for RPD?
How can customers deploy Rapid7 Curated Intelligence Rules in AWS?
