Next month, Moore will raise the already-high stakes when Metasploit releases a new piece of code--called eVade-o-Matic--that makes it harder for intrusion-detection systems and antivirus software to ...

Security product provider Rapid7 has updated its widely used open-source Metasploit exploitation framework, expanding the software so it supports enterprise IT security staff as well as its core ...

Last week, I got on the phone with HD Moore to ask him how things have been going since he sold Metasploit to Rapid7, sending the open source security world into a frenzy some six months ago. Rapid7 ...

Security researchers have spotted the first attacks designed to exploit the critical vulnerability exposed in Microsoft Windows last week. The vulnerabilities emerged as part of Microsoft's MS06-040 ...

Days after a bug in QuickTime was revealed, an attack code for exploiting the bug and hijacking Macs, including those running Leopard, has come out Hackers now have sample attack code for the newest ...

Researchers at U.C. Berkeley, the University of Pittsburgh and Carnegie Mellon University created automatically generated exploits for five Microsoft programs based on patches provided with the ...

Public-facing instances of ProjectSend, an open-source file-sharing web application, have been exploited by attackers, according to vulnerability intelligence provider VulnCheck. ProjectSend was ...

The Kinsing cybercrime group is back with a new attack vector: Pummeling a previously disclosed path traversal flaw in the Openfire enterprise messaging application to create unauthenticated admin ...

Less than 24 hours after Microsoft said it couldn't patch Windows to fix a systemic problem, attack code appeared Tuesday to exploit the company's software. Also on Tuesday, a security firm that's ...