Thursday, February 7, 2019

Snort rule update for Feb. 7, 2019

Just released:
Snort Subscriber Rule Set Update for Feb. 7, 2019

Cisco Talos just released the newest SNORT® rule set. This release includes 30 new rules and two modified rules, none of which are shared object rules.

This release includes numerous rules for DarthMiner, a cryptocurrency miner targeting Macs. The malware aims to infiltrate machines and then steal users' cryptocurrency-related logins.
There were no changes made to the snort.conf in this release.

Talos's rule release:
Talos has added and modified multiple rules in the browser-ie, browser-other, deleted, file-image, file-java, malware-cnc, pua-other and server-webapp rule sets to provide coverage for emerging threats from these technologies.
You can subscribe to Talos' newest rule detection functionality for as low as $29 a year with a personal account. Be sure and see our business pricing as well here. Make sure and stay up to date to catch the most emerging threats.