Cisco Talos just released the latest SNORT rule update for all users. Today’s release contains 33 new rules, six new shared object rules and eight modified rules. This rule update provides protection against a major new wave of malware that reportedly targeted a U.S. federal agency. Attackers are using the Syscon backdoor along with a variant of the Carrotbat malware to install malicious downloaders on victim’s machines. Talos urges all users to implement these rules as soon as possible to keep their networks and machines protected.”]
Source: https://blog.snort.org/2020/02/snort-rule-update-for-feb-18-2020.html