Rapid7 Unveils Espionage in Telecom Infrastructure
Written by Emily J. Thompson, Senior Investment Analyst
Updated: 5 days ago
0mins
Should l Buy RPD?
Source: Newsfilter
- Sustained Espionage: Rapid7 Labs' research reveals a long-term espionage campaign by the China-linked threat actor Red Menshen within global telecommunications infrastructure, indicating a shift from opportunistic intrusions to deliberate, long-term pre-positioning, raising national security concerns.
- Kernel-Level Stealth: The campaign employs a Linux kernel-level backdoor, BPFdoor, which operates without opening ports or generating typical beaconing activity, thereby limiting visibility for traditional monitoring tools and making potential attacks harder to detect.
- Weaponization of Encrypted Traffic: A newly identified variant of malware conceals command triggers within legitimate encrypted HTTPS traffic, allowing attackers to bypass modern security controls by abusing SSL termination points to activate dormant implants.
- Access to Signaling Systems: The investigation found targeting of specialized protocols like SCTP, enabling attackers to track subscriber activity, including location tracking and identity-related data, further exacerbating the security threats to telecommunications networks.
Trade with 70% Backtested Accuracy
Stop guessing "Should I Buy RPD?" and start using high-conviction signals backed by rigorous historical data.
Sign up today to access powerful investing tools and make smarter, data-driven decisions.
Analyst Views on RPD
Wall Street analysts forecast RPD stock price to rise
20 Analyst Rating
5 Buy
14 Hold
1 Sell
Hold
Current: 5.450
Low
21.00
Averages
30.19
High
40.00
Current: 5.450
Low
21.00
Averages
30.19
High
40.00
About RPD
Rapid7, Inc. is a global cybersecurity software and services provider. It has the expertise of the security operations center (SOC) across information security, cloud operations, development, and information technology (IT) teams, enabling them to understand the attacker and leverage that information to take control of their fragmented attack surface. Rapid7 Managed Threat Complete (MTC) is its flagship offering and unifies the leading detection and response of Rapid7 Managed Detection and Response (MDR) and the exposure management of Rapid7 Managed Vulnerability Management (MVM) to manage customer’s imminent risks, pinpoint and eliminate threats as early as possible and build resiliency for their future. Its Rapid7 Threat Complete unifies Rapid7 InsightIDR (InsightIDR) and Rapid7 InsightVM (InsightVM) to provide complete risk and threat coverage in a single offering. Its security solutions help more than 11,000 global customers unite cloud risk management and threat detection.
About the author
Emily J. Thompson
Emily J. Thompson, a Chartered Financial Analyst (CFA) with 12 years in investment research, graduated with honors from the Wharton School. Specializing in industrial and technology stocks, she provides in-depth analysis for Intellectia’s earnings and market brief reports.
U.S. Infrastructure Faces Cyber Threats from Hostile Nations
- Cybersecurity Threat Assessment: The U.S. Intelligence Community's 2026 Annual Threat Assessment reveals that four hostile nations are embedded within America's critical infrastructure, indicating an urgent need for enhanced national security measures and strategic responses to potential conflicts.
- Surge in Global Cybersecurity Spending: Gartner projects that global information security spending will reach $244 billion by 2026, reflecting a significant acceleration in corporate investments in cybersecurity, particularly in post-quantum cryptography, as organizations scramble to fortify defenses against emerging threats.
- Quantum Security Pilot Program: Quantum Secure Encryption Corp. has secured its first municipal government pilot for post-quantum cybersecurity, utilizing its Quantum Preparedness Assessment platform to help local authorities identify encryption vulnerabilities, positioning the company as a leader in this nascent market.
- Industry Collaboration and Expansion: Since November 2025, QSE has expanded its operational markets from four to thirteen, demonstrating its robust commercial growth capabilities, while partnerships with multiple municipalities lay a solid foundation for future expansion and revenue generation.
See More
Rapid7 Acquires Kenzo Security to Enhance MDR Services
- Acquisition Context: Rapid7 has acquired AI startup Kenzo Security to transition its Managed Detection and Response (MDR) services from manual, AI-assisted workflows to fully autonomous, machine-speed operations, marking a strategic shift in the cybersecurity landscape.
- Technology Integration: Rapid7 is integrating Kenzo's multi-agent architecture into the Rapid7 Command Platform to tackle the overwhelming flood of digital alerts faced by security teams, with initial data showing a 94% reduction in investigation time and an increase in alert coverage from 12% to 100%, significantly enhancing security response capabilities.
- Automation Benefits: By combining Kenzo's data mesh with Rapid7's Command Platform, organizations can benefit from rapid, AI-driven investigations that shorten detection and response times, as the platform can automatically manage investigations and adapt to new threats, ensuring decision transparency while reducing manual workload.
- Strategic Implications: This acquisition strengthens Rapid7's efforts in managed cybersecurity operations, enabling customers to lower risks and respond swiftly to threats through AI-SOC technology and a blend of automation and human skills, further solidifying its market position.
See More
Rapid7 Grants Inducement Awards Following Kenzo Acquisition
- Acquisition Inducements: Rapid7's acquisition of Kenzo Security on March 26, 2026, included the granting of 467,945 restricted stock units (RSUs) to Kenzo employees and contractors, emphasizing Rapid7's commitment to talent integration post-acquisition.
- Founders' Awards: Kenzo founders Harish Singh and Partha Naidu received 525,769 performance-based restricted stock units (PSUs) each, reflecting Rapid7's focus on executive retention and promoting long-term growth through performance-driven incentives.
- Incentive Plan Details: The RSUs will vest over three years from the grant date, while the PSUs will be evaluated based on Rapid7's annual performance goals starting January 1, 2027, ensuring ongoing employee engagement tied to key performance metrics.
- Compliance and Transparency: All inducements were granted under Rapid7's 2015 Equity Incentive Plan and received unanimous approval from the independent Compensation Committee, aligning with Nasdaq listing rules to ensure transparency and compliance in corporate governance.
See More
Rapid7 Unveils Espionage in Telecom Infrastructure
- Sustained Espionage: Rapid7 Labs' research reveals a long-term espionage campaign by the China-linked threat actor Red Menshen within global telecommunications infrastructure, indicating a shift from opportunistic intrusions to deliberate, long-term pre-positioning, raising national security concerns.
- Kernel-Level Stealth: The campaign employs a Linux kernel-level backdoor, BPFdoor, which operates without opening ports or generating typical beaconing activity, thereby limiting visibility for traditional monitoring tools and making potential attacks harder to detect.
- Weaponization of Encrypted Traffic: A newly identified variant of malware conceals command triggers within legitimate encrypted HTTPS traffic, allowing attackers to bypass modern security controls by abusing SSL termination points to activate dormant implants.
- Access to Signaling Systems: The investigation found targeting of specialized protocols like SCTP, enabling attackers to track subscriber activity, including location tracking and identity-related data, further exacerbating the security threats to telecommunications networks.
See More
RingCentral and Five9 Earnings Boost Stock Prices
- Earnings Beat: Both RingCentral and Five9 reported earnings that exceeded Wall Street estimates, with RingCentral's stock surging 34% and Five9's rising 14%, reflecting strong market confidence in their future growth.
- Surge in AI Demand: Both companies indicated that the accelerating adoption of artificial intelligence has boosted demand for customer service solutions, with RingCentral's annual recurring revenue from AI tool users doubling year-over-year to nearly 10%.
- Five9 AI Business Growth: Five9's enterprise AI bookings more than doubled year-over-year, leading to an annual recurring revenue of $100 million, showcasing its strong performance and market demand in the AI sector.
- Market Rebound Signal: Following a significant sell-off in the software sector due to AI threats, the robust performance of these two companies provides a rebound signal for investors, potentially indicating an improvement in market sentiment.
See More
RingCentral and Five9 Surge on Strong Q4 Results
- Earnings Beat: Both RingCentral and Five9 reported fourth-quarter results that exceeded Wall Street expectations, with RingCentral's stock surging 34% and Five9 rising about 14%, reflecting strong performance in the customer service software sector.
- AI-Driven Growth: Both companies indicated that accelerating AI adoption has boosted demand, with RingCentral reporting that annual recurring revenue from customers using AI tools doubled year-over-year to nearly 10%.
- Market Panic Eased: Despite a recent massive sell-off in the software sector due to fears surrounding AI tools, the strong earnings from these two firms alleviated investor concerns, indicating that AI is not undermining their business models.
- Five9 AI Booking Surge: Five9 reported that its enterprise AI bookings more than doubled year-over-year, achieving $100 million in annual recurring revenue, showcasing its competitive edge and market potential in customer service solutions.
See More
U.S. Infrastructure Faces Cyber Threats from Hostile Nations
- Cybersecurity Threat Assessment: The U.S. Intelligence Community's 2026 Annual Threat Assessment reveals that four hostile nations are embedded within America's critical infrastructure, indicating an urgent need for enhanced national security measures and strategic responses to potential conflicts.
- Surge in Global Cybersecurity Spending: Gartner projects that global information security spending will reach $244 billion by 2026, reflecting a significant acceleration in corporate investments in cybersecurity, particularly in post-quantum cryptography, as organizations scramble to fortify defenses against emerging threats.
- Quantum Security Pilot Program: Quantum Secure Encryption Corp. has secured its first municipal government pilot for post-quantum cybersecurity, utilizing its Quantum Preparedness Assessment platform to help local authorities identify encryption vulnerabilities, positioning the company as a leader in this nascent market.
- Industry Collaboration and Expansion: Since November 2025, QSE has expanded its operational markets from four to thirteen, demonstrating its robust commercial growth capabilities, while partnerships with multiple municipalities lay a solid foundation for future expansion and revenue generation.
See More
Rapid7 Acquires Kenzo Security to Enhance MDR Services
- Acquisition Context: Rapid7 has acquired AI startup Kenzo Security to transition its Managed Detection and Response (MDR) services from manual, AI-assisted workflows to fully autonomous, machine-speed operations, marking a strategic shift in the cybersecurity landscape.
- Technology Integration: Rapid7 is integrating Kenzo's multi-agent architecture into the Rapid7 Command Platform to tackle the overwhelming flood of digital alerts faced by security teams, with initial data showing a 94% reduction in investigation time and an increase in alert coverage from 12% to 100%, significantly enhancing security response capabilities.
- Automation Benefits: By combining Kenzo's data mesh with Rapid7's Command Platform, organizations can benefit from rapid, AI-driven investigations that shorten detection and response times, as the platform can automatically manage investigations and adapt to new threats, ensuring decision transparency while reducing manual workload.
- Strategic Implications: This acquisition strengthens Rapid7's efforts in managed cybersecurity operations, enabling customers to lower risks and respond swiftly to threats through AI-SOC technology and a blend of automation and human skills, further solidifying its market position.
See More
Rapid7 Grants Inducement Awards Following Kenzo Acquisition
- Acquisition Inducements: Rapid7's acquisition of Kenzo Security on March 26, 2026, included the granting of 467,945 restricted stock units (RSUs) to Kenzo employees and contractors, emphasizing Rapid7's commitment to talent integration post-acquisition.
- Founders' Awards: Kenzo founders Harish Singh and Partha Naidu received 525,769 performance-based restricted stock units (PSUs) each, reflecting Rapid7's focus on executive retention and promoting long-term growth through performance-driven incentives.
- Incentive Plan Details: The RSUs will vest over three years from the grant date, while the PSUs will be evaluated based on Rapid7's annual performance goals starting January 1, 2027, ensuring ongoing employee engagement tied to key performance metrics.
- Compliance and Transparency: All inducements were granted under Rapid7's 2015 Equity Incentive Plan and received unanimous approval from the independent Compensation Committee, aligning with Nasdaq listing rules to ensure transparency and compliance in corporate governance.
See More
Rapid7 Unveils Espionage in Telecom Infrastructure
- Sustained Espionage: Rapid7 Labs' research reveals a long-term espionage campaign by the China-linked threat actor Red Menshen within global telecommunications infrastructure, indicating a shift from opportunistic intrusions to deliberate, long-term pre-positioning, raising national security concerns.
- Kernel-Level Stealth: The campaign employs a Linux kernel-level backdoor, BPFdoor, which operates without opening ports or generating typical beaconing activity, thereby limiting visibility for traditional monitoring tools and making potential attacks harder to detect.
- Weaponization of Encrypted Traffic: A newly identified variant of malware conceals command triggers within legitimate encrypted HTTPS traffic, allowing attackers to bypass modern security controls by abusing SSL termination points to activate dormant implants.
- Access to Signaling Systems: The investigation found targeting of specialized protocols like SCTP, enabling attackers to track subscriber activity, including location tracking and identity-related data, further exacerbating the security threats to telecommunications networks.
See More
RingCentral and Five9 Earnings Boost Stock Prices
- Earnings Beat: Both RingCentral and Five9 reported earnings that exceeded Wall Street estimates, with RingCentral's stock surging 34% and Five9's rising 14%, reflecting strong market confidence in their future growth.
- Surge in AI Demand: Both companies indicated that the accelerating adoption of artificial intelligence has boosted demand for customer service solutions, with RingCentral's annual recurring revenue from AI tool users doubling year-over-year to nearly 10%.
- Five9 AI Business Growth: Five9's enterprise AI bookings more than doubled year-over-year, leading to an annual recurring revenue of $100 million, showcasing its strong performance and market demand in the AI sector.
- Market Rebound Signal: Following a significant sell-off in the software sector due to AI threats, the robust performance of these two companies provides a rebound signal for investors, potentially indicating an improvement in market sentiment.
See More
RingCentral and Five9 Surge on Strong Q4 Results
- Earnings Beat: Both RingCentral and Five9 reported fourth-quarter results that exceeded Wall Street expectations, with RingCentral's stock surging 34% and Five9 rising about 14%, reflecting strong performance in the customer service software sector.
- AI-Driven Growth: Both companies indicated that accelerating AI adoption has boosted demand, with RingCentral reporting that annual recurring revenue from customers using AI tools doubled year-over-year to nearly 10%.
- Market Panic Eased: Despite a recent massive sell-off in the software sector due to fears surrounding AI tools, the strong earnings from these two firms alleviated investor concerns, indicating that AI is not undermining their business models.
- Five9 AI Booking Surge: Five9 reported that its enterprise AI bookings more than doubled year-over-year, achieving $100 million in annual recurring revenue, showcasing its competitive edge and market potential in customer service solutions.
See More
