Cisco Talos released the newest rule update for SNORTⓇ Thursday morning.
Today's rule update provides several new protections against the Masslogger credential-stealing malware. There is also a rule protecting against a heap buffer overload attempt in Adobe Acrobat that Adobe disclosed earlier this week as part of its monthly security update.
Here's a breakdown of today's rule release:
|Shared object rules||Modified shared object rules||New rules||Modified rules|
snort.confin this release.
Talos' rule release:
Talos has added and modified multiple rules in the browser-webkit, file-image, file-pdf, malware-cnc, malware-other, netbios, os-other and server-webapp rule sets to provide coverage for emerging threats from these technologies.