Snort mailing list archives

Previous By Date Next
Previous By Thread Next

Snort Subscriber Rules Update 2022-03-04

From: Research <research () sourcefire com>
Date: Sat, 5 Mar 2022 01:59:46 GMT
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


Talos Snort Subscriber Rules Update

Synopsis:
This release adds and modifies rules in several categories.

Details:
Talos is releasing Snort coverage to protect against ongoing cyber
operations against Ukraine. These new Snort rules provide protection
against the following malware families: Redline (SID 59160), IsaacWiper
(SIDs 59163-59164), SunSeed Lua (SIDs 59165-59173), HermeticRansom
(SIDs 59154-59159), Vidar (SIDs 59200-59203), and WhiteBlackCrypt (SIDs
59161-59162).

Talos has added and modified multiple rules in the deleted,
malware-cnc, malware-other and os-windows rule sets to provide coverage
for emerging threats from these technologies.


For a complete list of new and modified rules please see:

https://www.snort.org/advisories
-----BEGIN PGP SIGNATURE-----
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=8jNa
-----END PGP SIGNATURE-----

_______________________________________________
Snort-sigs mailing list
Snort-sigs () lists snort org
https://lists.snort.org/mailman/listinfo/snort-sigs

Please visit http://blog.snort.org for the latest news about Snort!

Please follow these rules: https://snort.org/faq/what-is-the-mailing-list-etiquette

Visit the Snort.org to subscribe to the official Snort ruleset, make sure to stay up to date to catch the most <a 
href=" https://snort.org/downloads/#rule-downloads";>emerging threats</a>!
Previous By Date Next
Previous By Thread Next

Current thread: