Cisco Talos released a new SNORTⓇ rule set yesterday. Our apologies, as this blog post is going up a day late.
The latest update includes 14 new rules.
Thursday's release included new protections against some notable malware families, including the Delf downloader, which was recently part of a spam campaign in Spain. There are also two rules targeting the DarkSide ransomware, which recently debuted using several professional techniques to give the group a more formal appearance.
Talos has added and modified multiple rules in the malware-other rule sets to provide coverage for emerging threats from these technologies.