Daily Ruleset Update Summary 2017/06/16

[***]            Summary:            [***]

21 new Open,28 (7 + 21) Pro. Phishing Landing Titles over non SSL, CVE-2017-8543, Various Phishing.

[+++]          Added rules:          [+++]

Open:

2024384 - ET EXPLOIT Samba Arbitrary Module Loading Vulnerability M2 (NT Create AndX .so) (CVE-2017-7494) (exploit.rules)
2024385 - ET CURRENT_EVENTS Possible iCloud Phishing Landing - Title over non SSL (current_events.rules)
2024386 - ET CURRENT_EVENTS Possible Google Docs Phishing Landing - Title over non SSL (current_events.rules)
2024387 - ET CURRENT_EVENTS Possible Docusign Phishing Landing - Title over non SSL (current_events.rules)
2024388 - ET CURRENT_EVENTS Possible Dropbox Phishing Landing - Title over non SSL (current_events.rules)
2024389 - ET CURRENT_EVENTS Possible Alibaba Phishing Landing - Title over non SSL (current_events.rules)
2024390 - ET CURRENT_EVENTS Possible Yahoo Phishing Landing - Title over non SSL (current_events.rules)
2024391 - ET CURRENT_EVENTS Possible Paypal Phishing Landing - Title over non SSL (current_events.rules)
2024392 - ET CURRENT_EVENTS Possible Excel Online Phishing Landing - Title over non SSL (current_events.rules)
2024393 - ET CURRENT_EVENTS Possible Free Mobile Phishing Landing - Title over non SSL (current_events.rules)
2024394 - ET CURRENT_EVENTS Possible AOL Mail Phishing Landing - Title over non SSL (current_events.rules)
2024395 - ET CURRENT_EVENTS Possible OWA Mail Phishing Landing - Title over non SSL (current_events.rules)
2024396 - ET CURRENT_EVENTS Possible OWA Mail Phishing Landing - Title over non SSL (current_events.rules)
2024397 - ET CURRENT_EVENTS Possible Facebook Help Center Phishing Landing - Title over non SSL (current_events.rules)
2024398 - ET CURRENT_EVENTS Possible Yahoo Phishing Landing - Title over non SSL (current_events.rules)
2024399 - ET CURRENT_EVENTS Possible Adobe PDF Phishing Landing - Title over non SSL (current_events.rules)
2024400 - ET CURRENT_EVENTS Possible DHL Phishing Landing - Title over non SSL (current_events.rules)
2024401 - ET CURRENT_EVENTS Possible Adobe ID Phishing Landing - Title over non SSL (current_events.rules)
2024402 - ET CURRENT_EVENTS Possible Facebook Phishing Landing - Title over non SSL (current_events.rules)
2024403 - ET CURRENT_EVENTS Possible Dropbox Phishing Landing - Title over non SSL (current_events.rules)
2024404 - ET EXPLOIT HP Printer Attempted Path Traversal via PJL (exploit.rules)

Pro:

2826776 - ETPRO CURRENT_EVENTS Successful RBC Royal Bank Phish Jun 122017 (current_events.rules)
2826777 - ETPRO CURRENT_EVENTS Successful Mastercard Phish M1 Jun 162017 (current_events.rules)
2826778 - ETPRO CURRENT_EVENTS Successful Mastercard Phish M2 Jun 162017 (current_events.rules)
2826779 - ETPRO EXPLOIT CVE-2017-8543 SMB CPMSetBindings (exploit.rules)
2826780 - ETPRO EXPLOIT CVE-2017-8543 SMB CPMGetRows (exploit.rules)
2826781 - ETPRO EXPLOIT CVE-2017-8543 SMB2 CPMSetBindings (exploit.rules)
2826782 - ETPRO EXPLOIT CVE-2017-8543 SMB2 CPMGetRows (exploit.rules)

[///]     Modified active rules:     [///]

2018303 - ET CURRENT_EVENTS Possible iTunes Phishing Landing - Title over non SSL (current_events.rules)
2020332 - ET CURRENT_EVENTS Possible Dropbox Phishing Landing - Title over non SSL (current_events.rules)
2022886 - ET POLICY Crypto Coin Miner Login (policy.rules)
2815145 - ETPRO CURRENT_EVENTS Possible Chase Phishing Landing - Title over non SSL (current_events.rules)
 

Date: 
Friday, June 16, 2017 - 00:00