The newest rule set for SNORTⓇ is now available from Cisco Talos. In case you missed it, there is also a new version of Snort 3 out now.
Thursday's rule release includes new coverage to protect against the REvil ransomware, which is recently known for targeting health care systems.
Here's a breakdown of everything in today's release:
|Shared object rules||Modified shared object rules||New rules||Modified rules|
There were no changes made to the
snort.confin this release.
Talos' rule release:
Talos has added and modified multiple rules in the file-multimedia, file-pdf, malware-other and server-webapp rule sets to provide coverage for emerging threats from these technologies.