[***] Summary: [***]
2 new Open, 30 new Pro (2 + 28). DNSBin, Remcos, jssLoader, Various SSL/TLS, Various Phish.
Slides from the ETPRO Suricata 5.0 webinar are now available here -
https://www.slideshare.net/JasonWilliams288/proofpoint-emerging-threats-suricata-50-webinar
Please share issues, feedback, and requests at https://feedback.emergingthreats.net/feedback
[+++] Added rules: [+++]
Open:
2028634 - ET TROJAN DNSBin Demo - Data Exfil (trojan.rules)
2028635 - ET TROJAN DNSBin Demo - Data Inbound (trojan.rules)
Pro:
2838603 - ETPRO MOBILE_MALWARE AndroidOS_Gambling.HRX Checkin (mobile_malware.rules)
2838604 - ETPRO TROJAN Win32/GRIFFON CnC Activity (trojan.rules)
2838605 - ETPRO TROJAN Observed Malicious SSL Cert (jssLoader CnC) (trojan.rules)
2838606 - ETPRO TROJAN Win32/jssLoader CnC Activity (trojan.rules)
2838607 - ETPRO TROJAN Win32/jssLoader CnC Checkin (trojan.rules)
2838608 - ETPRO CURRENT_EVENTS Observed Malicious SSL Cert (MalDoc DL 2019-09-27) (current_events.rules)
2838609 - ETPRO CURRENT_EVENTS Observed Malicious SSL Cert (MalDoc DL 2019-09-27 2) (current_events.rules)
2838610 - ETPRO CURRENT_EVENTS Observed Malicious SSL Cert (MalDoc DL 2019-09-27 3) (current_events.rules)
2838611 - ETPRO TROJAN Observed Malicious SSL Cert (Get2 CnC) (trojan.rules)
2838612 - ETPRO CURRENT_EVENTS Successful Centurylink Phish 2019-09-27 (current_events.rules)
2838613 - ETPRO CURRENT_EVENTS Successful Banco do Brasil Phish 2019-09-27 (current_events.rules)
2838614 - ETPRO CURRENT_EVENTS Successful Banco do Brasil Phish 2019-09-27 (current_events.rules)
2838615 - ETPRO CURRENT_EVENTS Successful Apple Phish 2019-09-27 (current_events.rules)
2838616 - ETPRO CURRENT_EVENTS Successful Generic Credit Card Information Phish 2019-09-27 (current_events.rules)
2838617 - ETPRO CURRENT_EVENTS Successful Microsoft Account Phish 2019-09-27 (current_events.rules)
2838618 - ETPRO CURRENT_EVENTS Successful Rackspace Webmail Phish 2019-09-27 (current_events.rules)
2838619 - ETPRO CURRENT_EVENTS Successful BV Financeira Phish 2019-09-27 (current_events.rules)
2838620 - ETPRO CURRENT_EVENTS Successful Excel Online Phish 2019-09-27 (current_events.rules)
2838621 - ETPRO CURRENT_EVENTS Successful Verified by Visa Phish 2019-09-27 (current_events.rules)
2838622 - ETPRO CURRENT_EVENTS Successful Netflix Phish 2019-09-27 (current_events.rules)
2838623 - ETPRO CURRENT_EVENTS Successful Netflix Phish 2019-09-27 (current_events.rules)
2838624 - ETPRO CURRENT_EVENTS Successful Generic Credit Card Information Phish 2019-09-27 (current_events.rules)
2838625 - ETPRO CURRENT_EVENTS Successful Linkedin Phish 2019-09-27 (current_events.rules)
2838626 - ETPRO CURRENT_EVENTS Successful Generic Credit Card Information Phish 2019-09-27 (current_events.rules)
2838627 - ETPRO CURRENT_EVENTS Successful Generic Credit Card Information Phish 2019-09-27 (current_events.rules)
2838628 - ETPRO CURRENT_EVENTS Successful Generic Credit Card Information Phish 2019-09-27 (current_events.rules)
2838629 - ETPRO TROJAN Win32/Remcos RAT Checkin 182 (trojan.rules)
2838630 - ETPRO TROJAN Win32/Remcos RAT Checkin 183 (trojan.rules)