Rapid7 Outage History

Rapid7's Attack Surface Management (Surface Command) experienced a failure of the Command Platform import feed, preventing customers from importing data into their environments. The engineering team identified the root cause, applied a fix, and restarted the affected import feeds. The incident was resolved after 2.3 hours with import feed functionality fully restored.

Rapid7's Automation Reporting Homepage experienced a dashboard issue where specific metrics including "Time Saved" and "Time to Human Decision" failed to load on the primary landing page for approximately 50 hours. While the visual indicators were unavailable in the main dashboard UI, users could still access reporting metrics through other areas of the product, and all historical data remained secure with no data loss. The issue was resolved with a fix implementation and automatic backfilling of any missing data during the incident period.

Rapid7's Command Platform experienced degraded performance affecting user login and navigation between platform experiences for 51 minutes. Customers encountered latency when logging in and navigating through the user interface. The engineering team implemented a fix and monitored recovery before fully resolving the incident.

Rapid7 customers in US East and US West regions experienced an abnormally high volume of security investigations between 6:00 PM and 12:30 AM UTC on April 9th, 2026. The issue was resolved after 16.3 hours, with the SOC processing remaining investigation backlogs for managed customers. Systems returned to normal performance levels following the resolution.

Rapid7's Command Platform experienced a login outage affecting both SSO and local MFA authentication methods, with users encountering unexpected errors after entering MFA codes. The User Interface components were impacted for 2 hours, preventing access across all regions. The issue was resolved after recovery efforts restored login functionality, followed by continued monitoring to ensure stability.

A configuration error at Rapid7 briefly re-enabled legacy detections starting at 11:00 AM UTC, causing an unexpected spike in new investigations being created over a 2-hour window. This affected SIEM and Services customers, who experienced noisy investigations cluttering their dashboards and user interface. Rapid7 disabled the problematic detections, performed bulk cleanup of the false investigations, and contacted all affected customers with remediation plans.

Rapid7 experienced collector outages in the EU and US East 1 regions due to an upgrade issue that lasted 162 hours. The engineering team identified the root cause and implemented a fix, followed by a monitoring period to ensure stability. The incident was fully resolved after the fix proved successful.

Rapid7's InsightVM dashboards experienced loading failures across multiple regions, impacting the user interface functionality. The incident was classified as minor and lasted 11 minutes while teams investigated the issue.

Rapid7's Vulnerability Management service experienced a major service interruption affecting US2 region customers for 1.3 hours on March 3, 2026. Users encountered login failures in Exposure Analytics and errors when calling the Public v4 API. The engineering team implemented a fix and monitored the results before fully resolving the incident.

A vendor outage in the me-central-01 region caused a prolonged service disruption lasting over 17 days, affecting Rapid7's VM customers with dashboard and Query Builder data issues, inability to create Goals/SLAs and Remediation Projects, and 5XX API responses. Rapid7 transitioned from public status updates to direct customer communication while working with their vendor to resolve the issue, with services remaining unavailable at the time of the final update.