Ruleset Update Summary - 2023/10/17 - v10443

rulesbot · October 17, 2023, 8:45pm

Summary:

4 new OPEN, 6 new PRO (4 + 2)

Thanks @TalosSecurity

2048581 - ET CURRENT_EVENTS Possible Atlassian Confluence CVE-2023-22515 Scan Activity - Clone (current_events.rules)
2048582 - ET INFO Commonly Abused Domain in DNS Lookup (rf .gd) (info.rules)
2048583 - ET EXPLOIT Cisco IOS XE Web Server Implant Check (CVE-2023-20198) (Outbound) (exploit.rules)
2048584 - ET EXPLOIT Cisco IOS XE Web Server Implant Check (CVE-2023-20198) (Inbound) (exploit.rules)

2855365 - ETPRO MALWARE TA453 Related Domain in DNS Lookup (malware.rules)
2855366 - ETPRO MALWARE Observed TA453 Related Domain in TLS SNI (malware.rules)

Topic	Replies	Views
Ruleset Update Summary - 2023/08/24 - v10402 Ruleset Updates	319	August 24, 2023
Ruleset Update Summary - 2023/05/03 - v10315 Ruleset Updates	368	May 3, 2023
Ruleset Update Summary - 2023/10/06 - v10434 Ruleset Updates	424	October 6, 2023
Ruleset Update Summary - 2023/10/31 - v10454 Ruleset Updates	298	October 31, 2023
Ruleset Update Summary - 2023/10/29 - v10451 Ruleset Updates	321	October 29, 2023