all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

SigmaHQ Rules Release Highlights — r2023–12–04

Add to bookmarks
Dec. 4, 2023, 7 p.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

SigmaHQ Rules Release Highlights — r2023–12–04

https://github.com/SigmaHQ/sigma/releases/tag/r2023-12-04

Sigma Rule Packages for 04–12–2023 are released and available for download. This release saw the addition of 21 new rules, 29 rule updates and 5 rule fixes by 15+ contributors.

New Rules

Some highlights for the newer rules include, a new detection for potential abuse of the “RstrtMgr” DLL by uncommon or suspicious processes

title: Load Of RstrtMgr.DLL By An Uncommon Process
id: 3669afd2-9891-4534-a626-e5cf03810a61
related:
    - id: b48492dc-c5ef-4572-8dff-32bc241c15c8
      type: derived
status: …

api article conversation dec link medium .net people release rules story the conversation

Visit resource

More from malware.news / Malware Analysis, News and Indicators - Latest topics

ISC Stormcast For Friday, May 10th, 2024 https://isc.sans.edu/podcastdetail/8976, (Fri, May 10th) 2 hours ago | malware.news
topic
Automated Pentesting, AI in SecOps, & AI-Powered Analytics - Jason Keirstead, Jay Mar-Tang, Anthony Aurigemma … 6 hours ago | malware.news
ai-powered amp analytics article +9
Phishing Attacks Increase, Network Transformation, & Unified SASE as a Service - Deepen Desai, Renuka … 8 hours ago | malware.news
amp article attacks link +10
Ransomware attacks fewer but more aggressive: What to do 9 hours ago | malware.news
article attacks link media +4
Why Reddit's new content policy is a big win for user privacy 10 hours ago | malware.news
article big changing companies +13
Feds, military personnel compete in President's Cyber Cup Challenge 10 hours ago | malware.news
agency article can career +20
A new alert system from CISA seems to be effective — now we just need … 10 hours ago | malware.news
alert challenges cisa companies +10
Next Gen Threats, CTEM Essentials, & Proactive MDR - Randy Watkins, Paul Reid, Zaira Pirzada … 10 hours ago | malware.news
amp article ctem gen +8
NSA: State-backed attackers are not after your data — they're targeting CI 10 hours ago | malware.news
advanced advanced persistent threat agency apt +21

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

C003561 On-line Vulnerability Assessment (OVA) Tool Manager (CTS) - WED 22 May

@ EMW, Inc. | Mons, Wallonia, Belgium
View on infosec-jobs.com

Engineer - IT Security Compliance

@ Tiffany & Co. | Parsippany, NJ, United States
View on infosec-jobs.com

Senior Restricted Research Compliance Specialist

@ University of Cincinnati | Cincinnati, OH, US
View on infosec-jobs.com

Senior Manager of Security Engineering - Employee Compute

@ JPMorgan Chase & Co. | Houston, TX, United States
View on infosec-jobs.com

Incident Response Analyst

@ Verisk | Jersey City, NJ, United States
View on infosec-jobs.com

Application Security Penetration Tester

@ Vodeno | Poland (remote)
View on infosec-jobs.com
View more jobs