Ruleset Update Summary - 2026/05/29 - v11203

rulesbot · May 29, 2026, 8:28pm

Summary:

3 new OPEN, 6 new PRO (3 + 3)

2069478 - ET MALWARE Glassworm CnC Activity (CrowdStrike Sinkhole) (malware.rules)
2069479 - ET MALWARE TA569 Gholoader CnC Domain in DNS Lookup (cpanel .prestigefinancialrebuilders .com) (malware.rules)
2069480 - ET MALWARE TA569 Gholoader CnC Domain in TLS SNI (cpanel .prestigefinancialrebuilders .com) (malware.rules)

2867590 - ETPRO EXPLOIT Apache Ignite Unauthenticated Discovery SPI RCE via Insecure Deserialization (CVE-2024-52577) (exploit.rules)
2867591 - ETPRO WEB_SPECIFIC_APPS dotCMS Core Publish Audit API SQL Injection (CVE-2026-8054) (web_specific_apps.rules)
2867592 - ETPRO MALWARE Malicious Win32/NetSupport Rat CnC Checkin (malware.rules)

2069427 - ET EXPLOIT_KIT ZPHP Domain in DNS Lookup (crystalrocketlab .top) (exploit_kit.rules)

Topic	Replies	Views
Ruleset Update Summary - 2026/05/28 - v11202 Ruleset Updates	62	May 28, 2026
Ruleset Update Summary - 2026/03/11 - v11144 Ruleset Updates	89	March 11, 2026
Ruleset Update Summary - 2026/05/01 - v11184 Ruleset Updates	107	May 1, 2026
Ruleset Update Summary - 2026/03/20 - v11154 Ruleset Updates	100	March 20, 2026
Ruleset Update Summary - 2024/01/23 - v10512 Ruleset Updates	297	January 23, 2024