all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

SigmaHQ Rules Release Highlights — r2024–01–15

Add to bookmarks
Jan. 15, 2024, 7 p.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

SigmaHQ Rules Release Highlights — r2024–01–15

https://github.com/SigmaHQ/sigma/releases/tag/r2024-01-15

Sigma Rule Packages for 15–01–2024 are released and available for download. This release saw the addition of 19 new rules, 17 rule updates and 5 rule fixes by 18+ contributors.

New Rules

Some highlights for the newer rules include, a detection covering a new LOLbin “Dotnet-Trace.EXE” reported by bohops

title: Binary Proxy Execution Via Dotnet-Trace.EXE
id: 9257c05b-4a4a-48e5-a670-b7b073cf401b
status: experimental
description: Detects commandline arguments for executing a child process via dotnet-trace.exe
references: …

article conversation link medium people release rules story the conversation

Visit resource

More from malware.news / Malware Analysis, News and Indicators - Latest topics

Automated Pentesting, AI in SecOps, & AI-Powered Analytics - Jason Keirstead, Jay Mar-Tang, Anthony Aurigemma … 41 seconds ago | malware.news
ai-powered amp analytics article +9
Phishing Attacks Increase, Network Transformation, & Unified SASE as a Service - Deepen Desai, Renuka … an hour ago | malware.news
amp article attacks link +10
Ransomware attacks fewer but more aggressive: What to do 3 hours ago | malware.news
article attacks link media +4
Why Reddit's new content policy is a big win for user privacy 3 hours ago | malware.news
article big changing companies +13
Feds, military personnel compete in President's Cyber Cup Challenge 4 hours ago | malware.news
agency article can career +20
A new alert system from CISA seems to be effective — now we just need … 4 hours ago | malware.news
alert challenges cisa companies +10
Next Gen Threats, CTEM Essentials, & Proactive MDR - Randy Watkins, Paul Reid, Zaira Pirzada … 4 hours ago | malware.news
amp article ctem gen +8
NSA: State-backed attackers are not after your data — they're targeting CI 4 hours ago | malware.news
advanced advanced persistent threat agency apt +21
CVE-2024-21115: An Oracle VirtualBox LPE Used to Win Pwn2Own 5 hours ago | malware.news
april blog bug can +17

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Malware Analyst - TASO / Active Secret

@ Peraton | Arlington, VA, United States
View on infosec-jobs.com

Information Security Engineer

@ Deel | Anywhere (APAC)
View on infosec-jobs.com

Cybersecurity Engineer

@ Booz Allen Hamilton | USA, DC, Washington (1125 15th St NW)
View on infosec-jobs.com

Director, Security Engineering

@ Warner Bros. Discovery | GA Atlanta 1050 Techwood Drive NW
View on infosec-jobs.com

Consultant Senior Securité Réseaux

@ Devoteam | Tunis, Tunisia
View on infosec-jobs.com

SOC Analyst, Mid

@ Peraton | Washington, DC, United States
View on infosec-jobs.com
View more jobs