[***] Summary: [***] 14 new Open signatures, 21 new Pro (14+7). Office macros, Fiesta, WIN32.BRUTEFORCE.PRS. Thanks: Kevin Ross, @ryancmoon and @rmkml. [+++] Added rules: [+++] Open: 2019609 - ET TROJAN Possible Tinba DGA NXDOMAIN Responses (2) (trojan.rules)
2019610 - ET TROJAN Possible EITest Flash Redirect (trojan.rules)
2019611 - ET CURRENT_EVENTS Fiesta Java Exploit/Payload URI Struct (current_events.rules)
2019612 - ET CURRENT_EVENTS Fiesta Flash Exploit URI Struct (current_events.rules)
2019613 - ET POLICY Office Document Download Containing AutoOpen Macro (policy.rules)
2019614 - ET POLICY Office Document Download Containing AutoExec Macro (policy.rules)
2019615 - ET POLICY Office Document Containing AutoOpen Macro Via smtp (policy.rules)
2019616 - ET POLICY Office Document Containing AutoOpen Macro Via smtp (policy.rules)
2019617 - ET POLICY Office Document Containing AutoOpen Macro Via smtp (policy.rules)
2019618 - ET POLICY Office Document Containing AutoExec Macro Via smtp (policy.rules)
2019619 - ET POLICY Office Document Containing AutoExec Macro Via smtp (policy.rules)
2019620 - ET POLICY Office Document Containing AutoExec Macro Via smtp (policy.rules)
2019621 - ET TROJAN Win32/Hikit Server Authentication Response (trojan.rules)
2019622 - ET MALWARE Win32/DealPly Checkin (malware.rules) Pro: 2809102 - ETPRO MOBILE_MALWARE Trojan-Dropper.AndroidOS.Sadpor.g Sending Info via FTP (mobile_malware.rules)
2809103 - ETPRO MOBILE_MALWARE Android/Spyoo.C Checkin (mobile_malware.rules)
2809104 - ETPRO TROJAN HACKTOOL.WIN32.BRUTEFORCE.PRS Checkin 2 (trojan.rules)
2809105 - ETPRO TROJAN HACKTOOL.WIN32.BRUTEFORCE.PRS Checkin (trojan.rules)
2809106 - ETPRO MOBILE_MALWARE Android.Trojan.Koler.C Checkin 2 (mobile_malware.rules)
2809107 - ETPRO TROJAN Win32/Spy.Banker.ABCO Checkin (trojan.rules)
2809108 - ETPRO TROJAN Win32/Spy.Banker.ABCO Checkin Response (trojan.rules)
[///] Modified active rules: [///] 2018407 - ET CURRENT_EVENTS Fiesta URI Struct (current_events.rules)
2019406 - ET CURRENT_EVENTS SUSPICIOUS SMTP Attachment Inbound PPT attachment with Embedded OLE Object M1 (current_events.rules)
2808407 - ETPRO MOBILE_MALWARE Android.Trojan.FakeInst.BX Checkin 2 (mobile_malware.rules)
Date: 
Thursday, October 30, 2014 - 22:00