all InfoSec news
SigmaHQ Rule Release Highlights — r2023-10-23
Oct. 23, 2023, 6:40 p.m. | MalBot
Malware Analysis, News and Indicators - Latest topics malware.news
SigmaHQ Rules Release Highlights — r2023-10-23
https://github.com/SigmaHQ/sigma/releases/tag/r2023-10-23Sigma Rule Packages for 23-10-2023 are released and available for download. This release saw the addition of 21 new rules, 17 rule updates and 24 rule fixes.
New Rules
Some highlights for the newer rules include, detections for CVE-2023–27363 (Remote Code Execution in Foxit Reader) based on .hta file creation in the Startup directory.
title: Potential CVE-2023-27363 Exploitation - HTA File Creation By FoxitPDFReader
id: 9cae055f-e1d2-4f81-b8a5-1986a68cdd84
status: experimental
description: Detects suspicious …
article conversation link medium people release rules story the conversation workspace
More from malware.news / Malware Analysis, News and Indicators - Latest topics
Jobs in InfoSec / Cybersecurity
Expert Global Security Solutions Specialist
@ CHS Inc. | Inver Grove Heights, MN, US, 55077-1721
Security Operations Senior Associate - Perimeter Response
@ JPMorgan Chase & Co. | Houston, TX, United States
Cybersecurity Engineer IV
@ ManTech | 203O - CustomerSite,Washington,DC
Senior Site Reliability Engineer - Security
@ Klaviyo | Boston, MA
Information Security Specialist (Cloud Security)
@ Vertiv | Philippines
Business Value Consultant
@ Sumo Logic | United States