all InfoSec news
SigmaHQ Rules Release Highlights — r2024–02–26
Feb. 26, 2024, 10:30 p.m. | MalBot
Malware Analysis, News and Indicators - Latest topics malware.news
SigmaHQ Rules Release Highlights — r2024–02–26
https://github.com/SigmaHQ/sigma/releases/tag/r2024-02-26Sigma Rule Packages for 26–02–2024 are released and available for download. This release saw the addition of 31 new rules, 16 rule updates by 9 contributors.
New Rules
Some highlights for the newer rules include new rules related to the ScreenConnect “Slash and Grab” exploit CVE-2024–1708 and CVE-2024–1709.
title: CVE-2024-1709 - ScreenConnect Authentication Bypass Exploitation
id: d27eabad-9068-401a-b0d6-9eac744d6e67
status: experimental
description: |
Detects GET requests to '/SetupWizard.aspx/[anythinghere]' that indicate exploitation of …
article conversation curl data data export deletion export global link medium people permission project release rules scanning story tampering the conversation
More from malware.news / Malware Analysis, News and Indicators - Latest topics
Update: what-is-new.py Version 0.0.4
1 day, 2 hours ago |
malware.news
The CTI Analyst Challenge
1 day, 4 hours ago |
malware.news
Jobs in InfoSec / Cybersecurity
CyberSOC Technical Lead
@ Integrity360 | Sandyford, Dublin, Ireland
Cyber Security Strategy Consultant
@ Capco | New York City
Cyber Security Senior Consultant
@ Capco | Chicago, IL
Senior Security Researcher - Linux MacOS EDR (Cortex)
@ Palo Alto Networks | Tel Aviv-Yafo, Israel
Sr. Manager, NetSec GTM Programs
@ Palo Alto Networks | Santa Clara, CA, United States
SOC Analyst I
@ Fortress Security Risk Management | Cleveland, OH, United States