[***] Summary: [***] 35 new Open signatures, 37 new Pro (35+2). CVE-2014-3704 Drupal SQLi, FrameworkPOS, Win32.GameThief.Magania. Thanks: Steven Bairstow, Jake Warren, @kafeine. [+++] Added rules: [+++] 2019422 - ET EXPLOIT Possible CVE-2014-3704 Drupal SQLi attempt URLENCODE 1 (exploit.rules)
2019423 - ET EXPLOIT Possible CVE-2014-3704 Drupal SQLi attempt URLENCODE 2 (exploit.rules)
2019424 - ET EXPLOIT Possible CVE-2014-3704 Drupal SQLi attempt URLENCODE 3 (exploit.rules)
2019425 - ET EXPLOIT Possible CVE-2014-3704 Drupal SQLi attempt URLENCODE 4 (exploit.rules)
2019426 - ET EXPLOIT Possible CVE-2014-3704 Drupal SQLi attempt URLENCODE 5 (exploit.rules)
2019427 - ET EXPLOIT Possible CVE-2014-3704 Drupal SQLi attempt URLENCODE 6 (exploit.rules)
2019428 - ET EXPLOIT Possible CVE-2014-3704 Drupal SQLi attempt URLENCODE 7 (exploit.rules)
2019429 - ET EXPLOIT Possible CVE-2014-3704 Drupal SQLi attempt URLENCODE 8 (exploit.rules)
2019430 - ET EXPLOIT Possible CVE-2014-3704 Drupal SQLi attempt URLENCODE 9 (exploit.rules)
2019431 - ET EXPLOIT Possible CVE-2014-3704 Drupal SQLi attempt URLENCODE 10 (exploit.rules)
2019432 - ET EXPLOIT Possible CVE-2014-3704 Drupal SQLi attempt URLENCODE 11 (exploit.rules)
2019433 - ET EXPLOIT Possible CVE-2014-3704 Drupal SQLi attempt URLENCODE 12 (exploit.rules)
2019434 - ET EXPLOIT Possible CVE-2014-3704 Drupal SQLi attempt URLENCODE 13 (exploit.rules)
2019435 - ET EXPLOIT Possible CVE-2014-3704 Drupal SQLi attempt URLENCODE 14 (exploit.rules)
2019436 - ET EXPLOIT Possible CVE-2014-3704 Drupal SQLi attempt URLENCODE 15 (exploit.rules)
2019437 - ET EXPLOIT Possible CVE-2014-3704 Drupal SQLi attempt URLENCODE 16 (exploit.rules)
2019438 - ET EXPLOIT Possible CVE-2014-3704 Drupal SQLi attempt URLENCODE 17 (exploit.rules)
2019439 - ET EXPLOIT Possible CVE-2014-3704 Drupal SQLi attempt URLENCODE 18 (exploit.rules)
2019440 - ET EXPLOIT Possible CVE-2014-3704 Drupal SQLi attempt URLENCODE 19 (exploit.rules)
2019441 - ET EXPLOIT Possible CVE-2014-3704 Drupal SQLi attempt URLENCODE 20 (exploit.rules)
2019442 - ET EXPLOIT Possible CVE-2014-3704 Drupal SQLi attempt URLENCODE 21 (exploit.rules)
2019443 - ET EXPLOIT Possible CVE-2014-3704 Drupal SQLi attempt URLENCODE 22 (exploit.rules)
2019444 - ET EXPLOIT Possible CVE-2014-3704 Drupal SQLi attempt URLENCODE 23 (exploit.rules)
2019445 - ET EXPLOIT Possible CVE-2014-3704 Drupal SQLi attempt URLENCODE 24 (exploit.rules)
2019446 - ET EXPLOIT Possible CVE-2014-3704 Drupal SQLi attempt URLENCODE 25 (exploit.rules)
2019447 - ET EXPLOIT Possible CVE-2014-3704 Drupal SQLi attempt URLENCODE 26 (exploit.rules)
2019448 - ET EXPLOIT Possible CVE-2014-3704 Drupal SQLi attempt URLENCODE 27 (exploit.rules)
2019449 - ET EXPLOIT Possible CVE-2014-3704 Drupal SQLi attempt URLENCODE 28 (exploit.rules)
2019450 - ET EXPLOIT Possible CVE-2014-3704 Drupal SQLi attempt URLENCODE 29 (exploit.rules)
2019451 - ET EXPLOIT Possible CVE-2014-3704 Drupal SQLi attempt URLENCODE 30 (exploit.rules)
2019452 - ET EXPLOIT Possible CVE-2014-3704 Drupal SQLi attempt URLENCODE 31 (exploit.rules)
2019453 - ET EXPLOIT Possible CVE-2014-3704 Drupal SQLi attempt URLENCODE 32 (exploit.rules)
2019454 - ET TROJAN FrameworkPOS Covert DNS CnC Beacon 1 (trojan.rules)
2019455 - ET TROJAN FrameworkPOS Covert DNS CnC Beacon 2 (trojan.rules)
2019456 - ET CURRENT_EVENTS FlashPack Payload URI Struct Oct 16 2014 (current_events.rules) Pro: 2809014 - ETPRO MALWARE Win32/AdWare.Pirrit.A Checkin (malware.rules)
2809015 - ETPRO TROJAN Win32.GameThief.Magania Client Response (trojan.rules)
[///] Modified active rules: [///] 2013935 - ET TROJAN Win32.Zbot.chas/Unruy.H Covert DNS CnC Channel TXT Response (trojan.rules) [---] Removed rules: [---] 2019274 - ET CURRENT_EVENTS Possible Dyre SSL Cert Sept 26 2014 (current_events.rules)
Date: 
Wednesday, October 15, 2014 - 22:00