Blog | G5 Cyber Security

Snort rule update for Dec. 12, 2019

Cisco Talos has added and modified multiple rules in the browser-firefox, browser-ie, exploit-kit, file-office and server-other rule sets. Talos urges all users to implement these rules as soon as possible to keep their networks and machines protected. This rule set provides new coverage for several malware families, including variants of the Mimikatz credential-stealing tool, the DoppelPaymer ransomware and attacks from the Gamaredon APT. The hacking group recently started a wave of attacks in Ukraine against government agencies and journalists.”]

Source: https://blog.snort.org/2019/12/snort-rule-update-for-dec-12-2019.html

Exit mobile version