[Emerging-updates] Daily Ruleset Update Summary 06/06/2014

Francis Trudeau ftrudeau at emergingthreats.net
Fri Jun 6 18:34:10 EDT 2014


 [***] Summary: [***]

 7 new Open signatures, 9 new Pro (7+2).  GnuTLS vuln, Upatre,
PirritSuggestor, Neverquest.

 Thanks:   tdzmont, Kevin Ross, Alexandre Dulaunoy

 [+++]          Added rules:          [+++]

 Open:

  2018537 - ET WEB_CLIENT Possible GnuTLS Client ServerHello SessionID
Overflow CVE-2014-3466 (web_client.rules)
  2018538 - ET CURRENT_EVENTS tor2www .onion Proxy SSL cert
(current_events.rules)
  2018539 - ET CURRENT_EVENTS TorExplorer Certificate - Potentially Linked
To W32/Cryptowall.Ransomware (current_events.rules)
  2018540 - ET CURRENT_EVENTS DRIVEBY FlashPack Flash Exploit flash0515.php
(current_events.rules)
  2018541 - ET CURRENT_EVENTS PlugX/Destory HTTP traffic
(current_events.rules)
  2018542 - ET CURRENT_EVENTS Possible Upatre SSL Cert
(current_events.rules)
  2018543 - ET CURRENT_EVENTS Neverquest/Wawtrak Posting Data
(current_events.rules)

 Pro:

  2808137 - ETPRO MALWARE Spyware PirritSuggestor.A (malware.rules)
  2808138 - ETPRO MOBILE_MALWARE Android/Battpatch.A Checkin
(mobile_malware.rules)


 [///]     Modified active rules:     [///]

  2017813 - ET CURRENT_EVENTS Safe/CritX/FlashPack Payload
(current_events.rules)
  2806053 - ETPRO MALWARE ADWARE/InstallCore.Gen Checkin (malware.rules)
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.emergingthreats.net/pipermail/emerging-updates/attachments/20140606/2a8151b0/attachment.html>


More information about the Emerging-updates mailing list