all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

SigmaHQ Rules Release Highlights — r2023–11–20

Add to bookmarks
Nov. 20, 2023, 6:20 p.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

SigmaHQ Rules Release Highlights — r2023–11–20

https://github.com/SigmaHQ/sigma/releases/tag/r2023-11-20

Sigma Rule Packages for 20–11–2023 are released and available for download. This release saw the addition of 29 new rules, 44 rule updates and 11 rule fixes by 21+ contributors.

New Rules

Some highlights for the newer rules include, emerging threat detections for CVE-2023–22518 and CVE-2023–46747 exploitation attempts.

title: CVE-2023-22518 Exploitation Attempt - Suspicious Confluence Child Process (Windows)
id: 1ddaa9a4-eb0b-4398-a9fe-7b018f9e23db
related:
    - id: f8987c03-4290-4c96-870f-55e75ee377f4
      type: similar
status: experimental
description: |
    Detects …

article conversation link medium people release rules story the conversation

Visit resource

More from malware.news / Malware Analysis, News and Indicators - Latest topics

AI: The new puppet master behind cyberattacks an hour ago | malware.news
article attacks awareness awareness training +15
Prophetic Post by Intern on CVE-2023-1389 Foreshadows Mirai Botnet Expansion Today, (Thu, Nov 30th) 3 hours ago | malware.news
botnet cve cve-2023-1389 detections +18
ISC Stormcast For Thursday, November 30th, 2023 https://isc.sans.edu/podcastdetail/8758, (Thu, Nov 30th) 4 hours ago | malware.news
topic
Sysdig Achieves the Amazon EKS Ready Designation 7 hours ago | malware.news
amazon amazon eks amazon web services application +21
Kimsuky Targets South Korean Research Institutes with Fake Import Declaration 7 hours ago | malware.news
actor ahnlab asec backdoor +24
Personal Information Sales Used as Bait to Distribute Malware 8 hours ago | malware.news
actor ahnlab asec attack +20
2023-11-20 - DarkGate infection 8 hours ago | malware.news
analysis article darkgate infection +6
2023-11-22 - AgentTesla infection with FTP data exfil 8 hours ago | malware.news
agenttesla analysis article data +9
2023-11-06 - 404 TDS --> Unidentified malware --> Cobalt Strike 8 hours ago | malware.news
analysis article cobalt cobalt strike +7

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Paid internship - Cybersecurity [BGSW]

@ Bosch Group | Warszawa, Poland
View on infosec-jobs.com

Cybersecurity Officer

@ People In Need | Prague 2, Prague, Czechia
View on infosec-jobs.com

University -Cybersecurity Consultant

@ Booz Allen Hamilton | USA, CA, San Diego (1615 Murray Canyon Rd)
View on infosec-jobs.com

Senior Security Engineer, Detection Engineering

@ Lyft | Seattle, WA
View on infosec-jobs.com

Architecte de la sécurité des applications / Application Security Architect

@ Genetec | Montreal, Quebec, Canada
View on infosec-jobs.com

Telecommunications Sector| SIEM Engineer

@ Devoteam | Lisbon, Portugal
View on infosec-jobs.com
View more jobs