[Emerging-updates] Daily Ruleset Update Summary 06/27/2014

Francis Trudeau ftrudeau at emergingthreats.net
Fri Jun 27 18:12:19 EDT 2014


 [***] Summary: [***]

 3 new Open rules, 4 new Pro (3+1).  Cacti SQLi, Poweliks.A.

 Thanks:  Nathan Fowler, Jeff Kell and @kafeine

 [+++]          Added rules:          [+++]

 Open:

  2018611 - ET TROJAN Win32/Tesch.A Checkin (trojan.rules)
  2018612 - ET WEB_SPECIFIC_APPS Cacti Superlinks Plugin SQL Injection
(web_specific_apps.rules)
  2018613 - ET CURRENT_EVENTS Evil EK Redirector Cookie June 27 2014
(current_events.rules)

 Pro:

  2808248 - ETPRO TROJAN Win32/Poweliks.A Checkin (trojan.rules)


 [///]     Modified active rules:     [///]

  2013508 - ET TROJAN Downloader User-Agent HTTPGET (trojan.rules)
  2018454 - ET CURRENT_EVENTS Possible Malvertising Redirect URI
Struct (current_events.rules)


 [---]         Removed rules:         [---]

  2000381 - ET EXPLOIT MS-SQL DOS bouncing packets (exploit.rules)
  2018476 - ET TROJAN Downloader.Win32.Tesch.A Client CnC Checkin (trojan.rules)
  2403338 - ET CINS Active Threat Intelligence Poor Reputation IP
group 39 (ciarmy.rules)
  2405066 - ET CNC Shadowserver Reported CnC Server Port 58914 Group 1
(botcc.portgrouped.rules)
  2807228 - ETPRO TROJAN Win32/Tesch.A Checkin (trojan.rules)


More information about the Emerging-updates mailing list