Bleeping Computer

New GZipDe Malware Drops Metasploit Backdoor

Security researchers from AlienVault have discovered a new malware strain named GZipDe that appears to be part of a targeted attack —most likely a cyber-espionage campaign. Researchers discovered this ...
eWeek

Metasploit Creator Releases Malware Search Engine

eSpeaks’ Corey Noles talks with Rob Israch, President of Tipalti, about what it means to lead with Global-First Finance and how companies can build scalable, compliant operations in an increasingly ...
Threat Post

SMB2 Exploit Fitted into Metasploit; Attacks Likely

Fully functional exploit code for the (still unpatched) Windows SMB v2 vulnerability has been released to the public domain via the freely available Metasploit point-and-click attack tool, raising the ...
ZDNet

Cobalt Strike and Metasploit accounted for a quarter of all malware C&C servers in 2020

Cobalt Strike and Metasploit, two penetration testing toolkits usually employed by security researchers, have been used to host more than a quarter of all the malware command and control (C&C) servers ...
Threat Post

15 Years Later, Metasploit Still Manages to be a Menace

A fresh look at the penetration testing tool Metasploit reveals the 15-year old hacking tool still has some tricks up its sleeves, even against modern defenses. The popular penetration testing and ...
Bleeping Computer

EternalBlue NSA Exploit Becomes Commodity Hacking Tool, Spreads to Other Malware

ETERNALBLUE, an alleged NSA exploit targeting the SMBv1 protocol leaked by the Shadow Brokers in mid-April, has become a commodity hacking tool among malware developers. The tool's notoriety comes ...
Dark Reading

Cobalt Strike & Metasploit Tools Were Attacker Favorites in 2020

Cobalt Strike and Metasploit were the offensive security tools most commonly used to host malware command-and-control (C2) servers in 2020, researchers report. Researchers with Recorded Future's ...