Metasploit: One Year After The Rapid7 Acquisition When Rapid7 bought the Metasploit Project exactly one year ago this week, there were rumblings of concern that the open-source penetration testing tool would lose its identity and go all commercial.

Metasploit To Get More Powerful Web Attack Features A popular open-source Web application attack and audit framework is now under the umbrella of Rapid7, the vulnerability management company that purchased the Metasploit Project last year. The w3af project ultimately will bring more Web security features and functions to both the Metasploit tool and Rapid7’s commercial NeXpose product.

Escalating attacks prompted emergency IE update, says Microsoft Microsoft said that it patched the critical vulnerability in Internet Explorer (IE) earlier this week because the number of attacks jumped after news broke that the exploit had gone public. Microsoft’s explanation fit the expectations of several security researchers, who earlier this month predicted that the company would release an “out-of-band” update if attacks climbed, saying that that was the determining factor in Microsoft’s decision-making process

Hackers Channeling R&D Into Better Malware IT companies spend billions on R&D to improve their products and take advantage of the latest technologies. But as it turns out, so do cybercriminals, and that strategy seems to be working pretty well