[***] Summary: [***]
9 new OPEN, 17 new PRO (9 + 8). Win32/NixScare, CVE-2020-3495, Various Others.
Please share issues, feedback, and requests at https://feedback.emergingthreats.net/feedback
[+++] Added rules: [+++]
Open:
2030837 - ET EXPLOIT Possible Cisco Jabber RCE Inbound (CVE-2020-3495)
(exploit.rules)
2030838 - ET TROJAN Observed Malicious SSL Cert (Baka Skimmer Staging
CnC) (trojan.rules)
2030839 - ET TROJAN Observed Malicious SSL Cert (Baka Skimmer Staging
CnC) (trojan.rules)
2030840 - ET TROJAN Observed Malicious SSL Cert (Baka Skimmer Staging
CnC) (trojan.rules)
2030841 - ET TROJAN Observed Malicious SSL Cert (Baka Skimmer Staging
CnC) (trojan.rules)
2030842 - ET TROJAN Observed Malicious SSL Cert (Baka Skimmer Staging
CnC) (trojan.rules)
2030843 - ET TROJAN Observed Malicious SSL Cert (Baka Skimmer Staging
CnC) (trojan.rules)
2030844 - ET TROJAN Observed Malicious SSL Cert (Baka Skimmer Staging
CnC) (trojan.rules)
2030845 - ET TROJAN Win32/NixScare Stealer CnC Checkin (trojan.rules)
Pro:
2844300 - ETPRO POLICY Observed DNS Query to Dynamic DNS Service
(policy.rules)
2844301 - ETPRO POLICY Observed DNS Query to Dynamic DNS Service
(policy.rules)
2844302 - ETPRO POLICY Observed DNS Query to Dynamic DNS Service
(policy.rules)
2844303 - ETPRO POLICY Observed DNS Query to Dynamic DNS Service
(policy.rules)
2844304 - ETPRO POLICY Observed DNS Query to Dynamic DNS Service
(policy.rules)
2844305 - ETPRO POLICY Observed DNS Query to Dynamic DNS Service
(policy.rules)
2844306 - ETPRO POLICY Observed DNS Query to Dynamic DNS Service
(policy.rules)
2844307 - ETPRO POLICY Observed SSL Cert (CoinMiner Service)
(policy.rules)