[Emerging-updates] Emerging-updates Digest, Vol 73, Issue 6

Ben McDowall Ben.McDowall at telecom.co.nz
Sun Jan 12 15:48:04 HAST 2014


Confirmed ISA and SDN are syncing properly these rules are in the ruleset

-----Original Message-----
From: emerging-updates-bounces at lists.emergingthreats.net [mailto:emerging-updates-bounces at lists.emergingthreats.net] On Behalf Of emerging-updates-request at lists.emergingthreats.net
Sent: Sunday, 12 January 2014 11:00 a.m.
To: emerging-updates at lists.emergingthreats.net
Subject: Emerging-updates Digest, Vol 73, Issue 6

Send Emerging-updates mailing list submissions to
	emerging-updates at lists.emergingthreats.net

To subscribe or unsubscribe via the World Wide Web, visit
	https://lists.emergingthreats.net/mailman/listinfo/emerging-updates
or, via email, send a message with subject or body 'help' to
	emerging-updates-request at lists.emergingthreats.net

You can reach the person managing the list at
	emerging-updates-owner at lists.emergingthreats.net

When replying, please edit your Subject line so it is more specific
than "Re: Contents of Emerging-updates digest..."


Today's Topics:

   1. Daily Ruleset Update Summary 01/10/2014 (Francis Trudeau)


----------------------------------------------------------------------

Message: 1
Date: Fri, 10 Jan 2014 16:04:02 -0700
From: Francis Trudeau <ftrudeau at emergingthreats.net>
To: Emerging Sigs <emerging-sigs at emergingthreats.net>,
	Emerging-updates redirect <emerging-updates at emergingthreats.net>,
	ETPro-sigs List <etpro-sigs at emergingthreatspro.com>
Subject: [Emerging-updates] Daily Ruleset Update Summary 01/10/2014
Message-ID:
	<CAA-Ja_5xGLoGJcJtPV0DM6+hH8TUWv5EfzqbTMqsJq5QT9Hk=Q at mail.gmail.com>
Content-Type: text/plain; charset="iso-8859-1"

 [***] Summary: [***]

 11 new Pro rules, 7 new Open (4/7).  Hupigon, Koobface, Angler, GoonEK.

 Thanks to:  tdzmont, @EKWatcher, Eoin Miller.

 [+++]          Added rules:          [+++]

 Pro:

  2807459 - ETPRO TROJAN Backdoor.Win32.Hupigon.gors Checkin (trojan.rules)
  2807460 - ETPRO TROJAN DDoS.Win32/Nitol.gen!A Checkin (trojan.rules)
  2807461 - ETPRO TROJAN Net-Worm.Win32.Koobface.ght Checkin (trojan.rules)
  2807462 - ETPRO TROJAN Net-Worm.Win32.Koobface.ght Ping (trojan.rules)

 Open:

  2017951 - ET WEB_SERVER ATTACKER WebShell - PHP Offender - Title
(web_server.rules)
  2017952 - ET WEB_SERVER ATTACKER WebShell - PHP Offender - POST Command
(web_server.rules)
  2017953 - ET CURRENT_EVENTS Angler EK Landing Jan 10 2014
(current_events.rules)
  2017954 - ET CURRENT_EVENTS Angler EK Landing Jan 10 2014 1
(current_events.rules)
  2017955 - ET CURRENT_EVENTS Angler EK Landing Jan 10 2014 2
(current_events.rules)
  2017956 - ET CURRENT_EVENTS Angler EK Landing Jan 10 2014 3
(current_events.rules)
  2017957 - ET CURRENT_EVENTS GoonEK Landing Jan 10 2014
(current_events.rules)


 [///]     Modified active rules:     [///]

  2016853 - ET CURRENT_EVENTS Possible Neutrino EK Posting Plugin-Detect
Data May 15 2013 (current_events.rules)
  2017949 - ET USER_AGENTS FOCA User-Agent (user_agents.rules)
  2017950 - ET SCAN FOCA uri (scan.rules)
  2802851 - ETPRO TROJAN Backdoor.Win32.Qakbot.E (FTP Upload) 1
(trojan.rules)
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.emergingthreats.net/pipermail/emerging-updates/attachments/20140110/5a53d5a4/attachment-0001.html>

------------------------------

_______________________________________________
Emerging-updates mailing list
Emerging-updates at lists.emergingthreats.net
https://lists.emergingthreats.net/mailman/listinfo/emerging-updates


End of Emerging-updates Digest, Vol 73, Issue 6
***********************************************


More information about the Emerging-updates mailing list