Week 2-3 Reading Summary, Question for Class and In the News.

Metasploit-Unleashed Reading Summary:

The Metasploit Framework is a kaleidoscope of information security exploit kits, which encompasses numerous security exploits ready to be launchpad on a variety of architectures and environments.  Moreover, Metasploit is viewed as the one of the most useful open source auditing tools freely available to security professionals today. It has different commercial grade exploits and an extensive exploit development environment.  Not to mention that the passive reconnaissance network tools that can be used for information gathering and web vulnerability plugins, Also, Metasploit serves as a base for developing and automating new discovery techniques and attack methods, thus further compromising the CIA triad.

Question for Class:

With such powerful open source security tool kits available on the market today, how can one protect themselves from becoming the next cyber attack statistic?

In the News:

Linux kernel zero-day flaw puts ‘tens of millions’ of PCs, servers and Android devices at risk; main perception for this flaw appear to have stemmed a memory leak in the “Linux Keyring Facility”, which manages key security data encryption details and encryption keys.

For further information, please see news article though the below link:

http://www.v3.co.uk/v3-uk/news/2442582/linux-kernal-zero-day-flaw-puts-tens-of-millions-of-pcs-servers-and-android-devices-at-risk