[Emerging-updates] Daily Ruleset Update Summary 06/18/2013

Will Metcalf wmetcalf at emergingthreatspro.com
Tue Jun 18 18:56:07 HADT 2013


 [***]          Summary:          [***]

 7 new Open rules. 11 new Pro rules (7/4). Various malvertising, NailedPack
EK, Sweet Orange, Vulnerable Java, etc.

 [+++]          Added rules:          [+++]

  Open:
  2017028 - ET CURRENT_EVENTS MALVERTISING Unknown_InIFRAME - RedTDS URI
Structure (current_events.rules)
  2017029 - ET CURRENT_EVENTS Unknown_InIFRAME - URI Structure
(current_events.rules)
  2017030 - ET CURRENT_EVENTS Unknown_InIFRAME - Redirect to /iniframe/ URI
(current_events.rules)
  2017031 - ET CURRENT_EVENTS Unknown_InIFRAME - In Referrer
(current_events.rules)
  2017032 - ET CURRENT_EVENTS MALVERTISING Flash - URI - /loading?vkn=
(current_events.rules)
  2017034 - ET CURRENT_EVENTS NailedPack EK Landing June 18 2013
 (current_events.rules)
  2017035 - ET CURRENT_EVENTS Malcious Redirect June 18 2013
 (current_events.rules)

  Pro:
  2806522 - ETPRO TROJAN Win32/VB.ONY Checkin (trojan.rules)
  2806523 - ETPRO TROJAN Win32/Injector.AGAD Checkin (trojan.rules)
  2806524 - ETPRO TROJAN Trojan-Spy.Win32.NSM.a Checkin (trojan.rules)
  2806525 - ETPRO TROJAN W32/Refroso.DZP!tr Checkin 2 (trojan.rules)


 [///]     Modified active rules:     [///]

  2014297 - ET POLICY Vulnerable Java Version 1.7.x Detected (policy.rules)
  2016705 - ET CURRENT_EVENTS Sweet Orange applet with obfuscated URL April
01 2013 (current_events.rules)
  2016860 - ET CURRENT_EVENTS Sweet Orange Landing Page May 16 2013
(current_events.rules)
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.emergingthreats.net/pipermail/emerging-updates/attachments/20130618/86b8c6c3/attachment.html>


More information about the Emerging-updates mailing list