Login  |  Register
Emerging Threats

>Daily Update Summary 7/29/2011

>

10 new Pro rules and 3 open for 13 total. Happy friday!

[+++]          Added rules:          [+++]

 2013334 – ET POLICY SSL MiTM Vulnerable or EOL iOS 3.x device (policy.rules)
 2013335 – ET POLICY SSL MiTM Vulnerable or EOL iOS 4.x device (policy.rules)
 2013336 – ET POLICY SSL MiTM Vulnerable iOS 4.x CDMA iPhone device (policy.rules)

And the ET Pro Rules for today:
 2803312 – ETPRO TROJAN Virut.Ce Checkin (trojan.rules)
 2803313 – ETPRO TROJAN Win32.Staget.ge Checkin 2 (trojan.rules)
 2803314 – ETPRO TROJAN Win32.Staget.ge Checkin  (trojan.rules)
 2803315 – ETPRO TROJAN Enfal.F Checkin via HTTP Post 1 (trojan.rules)
 2803316 – ETPRO TROJAN Enfal.F Checkin via HTTP Post 2 (trojan.rules)
 2803317 – ETPRO TROJAN Enfal.F Checkin via HTTP Post 3 (trojan.rules)
 2803318 – ETPRO TROJAN Enfal.F Checkin via HTTP Post 4 (trojan.rules)
 2803319 – ETPRO TROJAN Enfal.F Checkin via HTTP Post 5 (trojan.rules)
 2803320 – ETPRO TROJAN Enfal.F Checkin via HTTP Post 6 (trojan.rules)
 2803321 – ETPRO TROJAN Win32/Rodecap.A Checkin (trojan.rules)

[///]     Modified active rules:     [///]

All generalized to catch new variants:
 2013186 – ET CURRENT_EVENTS Win32.Renos/Artro Trojan Checkin (current_events.rules)
 2801249 – ETPRO TROJAN Enfal.F Checkin via HTTP Post (trojan.rules)
 2801439 – ETPRO TROJAN Generic Spanish or Portugese Trojan Infection Report (trojan.rules)
 2803272 – ETPRO TROJAN W32/Koobface.hcy Checkin (trojan.rules)

[---]         Removed rules:         [---]

 2008374 – ET TROJAN Suspicious User-Agent (InetURL) (trojan.rules)
 2803259 – ETPRO TROJAN Fjoiner/Muldrop/Tnega Host Header Pattern (trojan.rules)
 2803275 – ETPRO TROJAN suspicious user-agent (mAgent) (trojan.rules)