[Emerging-updates] Daily Ruleset Update Summary 08/08/2014

Will Metcalf wmetcalf at emergingthreatspro.com
Fri Aug 8 19:17:24 EDT 2014


 [***]          Summary:          [***]

 6 New open rules. 8 New Pro rules (6/2). SSL Blacklist, Nuclear EK, etc.
Tks @abuse_ch, Kevin Ross.

 [+++]          Added rules:          [+++]

  Open:
  2018911 - ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate
detected (KINS C2) (trojan.rules)
  2018912 - ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate
detected (KINS C2) (trojan.rules)
  2018913 - ET TROJAN ABUSE.CH SSL Blacklist Malicious SSL certificate
detected (Vawtrak MITM) (trojan.rules)
  2018914 - ET CURRENT_EVENTS Nuclear Exploit Kit exe.exe Payload
(current_events.rules)
  2018915 - ET TROJAN ABUSE.CH SSL Fingerprint Blacklist Malicious SSL
certificate detected (KINS C2) (trojan.rules)
  2018916 - ET TROJAN ABUSE.CH SSL Fingerprint Blacklist Malicious SSL
certificate detected (KINS C2) (trojan.rules)

  Pro:
  2808523 - ETPRO MOBILE_MALWARE Backdoor.AndroidOS.Ssucl.a Checkin
(mobile_malware.rules)
  2808524 - ETPRO MOBILE_MALWARE Android.Trojan.Gfs.A Checkin
(mobile_malware.rules)


 [///]     Modified active rules:     [///]

  Pro:
  2807296 - ETPRO TROJAN Viknok (trojan.rules)
  2807297 - ETPRO TROJAN Viknok response (trojan.rules)
  2808103 - ETPRO MOBILE_MALWARE Backdoor.AndroidOS.Vsas.a Checkin
(mobile_malware.rules)
  2808132 - ETPRO CURRENT_EVENTS DRIVEBY Malicious Plugin Detect URI struct
(current_events.rules)
  2808510 - ETPRO TROJAN W32/Zbot.PM.gen Checkin (trojan.rules)
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.emergingthreats.net/pipermail/emerging-updates/attachments/20140808/c00163f3/attachment.html>


More information about the Emerging-updates mailing list