Re; lots of false positives, Neutrino

[Matthew Hallet <mhallet () nvsl com>]

We're also seeing a large amount of these Neutrino landing page events. "(1:36535) EXPLOIT-KIT Neutrino exploit kit 
landing page detected" was updated on 10/21/2015 and it seems to be flagging a ton of CDNs. Multiple different sources, 
multiple different destinations.


-MH
This message contains confidential information and is intended only for the individual named. If you are not the named 
addressee you should not disseminate, distribute or copy this e-mail. Please notify the sender immediately by e-mail if 
you have received this e-mail by mistake and delete this e-mail from your system. E-mail transmission cannot be 
guaranteed to be secure or error-free as information could be intercepted, corrupted, lost, destroyed, arrive late or 
incomplete, or contain viruses. The sender therefore does not accept liability for any errors or omissions in the 
contents of this message, which arise as a result of e-mail transmission. If verification is required please request a 
hard-copy version. Naugatuck Valley Savings and Loan, 333 Church Street, Naugatuck, CT 06770 www.NVSL.com

------------------------------------------------------------------------------

_______________________________________________
Snort-sigs mailing list
Snort-sigs () lists sourceforge net
https://lists.sourceforge.net/lists/listinfo/snort-sigs
http://www.snort.org


Please visit http://blog.snort.org for the latest news about Snort!